[Git][security-tracker-team/security-tracker][master] Process some NFUs

Fri Sep 22 21:46:58 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4ba6ec40 by Salvatore Bonaccorso at 2023-09-22T22:46:30+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2023-43640 (TaxonWorks is a web-based workbench designed for taxonomists and biodi ...)
-	TODO: check
+	NOT-FOR-US: TaxonWorks
 CVE-2023-43270 (dst-admin v1.5.0 was discovered to contain a remote command execution  ...)
-	TODO: check
+	NOT-FOR-US: dst-admin
 CVE-2023-43144 (Projectworldsl Assets-management-system-in-php 1.0 is vulnerable to SQ ...)
-	TODO: check
+	NOT-FOR-US: Projectworldsl Assets-management-system-in-php
 CVE-2023-42821 (The package `github.com/gomarkdown/markdown` is a Go library for parsi ...)
 	TODO: check
 CVE-2023-42812 (Galaxy is an open-source platform for FAIR data analysis. Prior to ver ...)
@@ -11,17 +11,17 @@ CVE-2023-42812 (Galaxy is an open-source platform for FAIR data analysis. Prior
 CVE-2023-42811 (aes-gcm is a pure Rust implementation of the AES-GCM. Starting in vers ...)
 	TODO: check
 CVE-2023-42798 (AutomataCI is a template git repository equipped with a native built-i ...)
-	TODO: check
+	NOT-FOR-US: AutomataCI
 CVE-2023-41031 (Command injection inhomemng.htminJuplink RX4-1500 versions V1.0.2,V1.0 ...)
-	TODO: check
+	NOT-FOR-US: Juplink RX4-1500
 CVE-2023-41029 (Command injection vulnerability in thehomemng.htm endpointinJuplink RX ...)
-	TODO: check
+	NOT-FOR-US: Juplink RX4-1500
 CVE-2023-41027 (Credential disclosure in the '/webs/userpasswd.htm' endpoint in Juplin ...)
-	TODO: check
+	NOT-FOR-US: Juplink RX4-1500
 CVE-2023-40989 (SQL injection vulnerbility in jeecgboot jeecg-boot v 3.0, 3.5.3 that a ...)
-	TODO: check
+	NOT-FOR-US: jeecgboot jeecg-boot
 CVE-2023-38346 (An issue was discovered in Wind River VxWorks 6.9 and 7. The function  ...)
-	TODO: check
+	NOT-FOR-US: Wind River VxWorks
 CVE-2023-5068 (Delta Electronics DIAScreen may write past the end of an allocated  bu ...)
 	NOT-FOR-US: Delta Electronics
 CVE-2023-4774 (The WP-Matomo Integration (WP-Piwik) plugin for WordPress is vulnerabl ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ba6ec40154fe9164750d6693cfc737ee0abb0b1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ba6ec40154fe9164750d6693cfc737ee0abb0b1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230922/9bfa015c/attachment.htm>
