[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5693d1de by Salvatore Bonaccorso at 2024-04-01T10:43:10+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,51 +1,51 @@
 CVE-2024-31033 (JJWT (aka Java JWT) through 0.12.5 ignores certain characters and thus ...)
 	TODO: check
 CVE-2024-2278 (Themify  WordPress plugin before 1.4.4 does not sanitise and escape so ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-2263 (Themify  WordPress plugin before 1.4.4 does not sanitise and escape a  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-2262 (Themify  WordPress plugin before 1.4.4 does not have CSRF check in its ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-28895 ('Yahoo! JAPAN' App for Android v2.3.1 to v3.161.1 and 'Yahoo! JAPAN' A ...)
-	TODO: check
+	NOT-FOR-US: 'Yahoo! JAPAN' App
 CVE-2024-27609 (Bonita before 2023.2-u2 allows stored XSS via a UI screen in the admin ...)
-	TODO: check
+	NOT-FOR-US: Bonita
 CVE-2024-20055 (In imgsys, there is a possible information disclosure due to a missing ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20054 (In gnss, there is a possible escalation of privilege due to a missing  ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20053 (In flashc, there is a possible out of bounds write due to an uncaught  ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20052 (In flashc, there is a possible information disclosure due to an uncaug ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20051 (In flashc, there is a possible system crash due to an uncaught excepti ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20050 (In flashc, there is a possible information disclosure due to an uncaug ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20049 (In flashc, there is a possible information disclosure due to an uncaug ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20048 (In flashc, there is a possible information disclosure due to an uncaug ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20047 (In battery, there is a possible out of bounds read due to an integer o ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20046 (In battery, there is a possible escalation of privilege due to an inte ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20045 (In audio, there is a possible out of bounds read due to an incorrect c ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20044 (In da, there is a possible out of bounds write due to a missing bounds ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20043 (In da, there is a possible out of bounds write due to a missing bounds ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20042 (In da, there is a possible out of bounds write due to a missing bounds ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20041 (In da, there is a possible out of bounds read due to a missing bounds  ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20040 (In wlan firmware, there is a possible out of bounds write due to impro ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-20039 (In modem protocol, there is a possible out of bounds write due to a mi ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2024-1526 (The Hubbub Lite  WordPress plugin before 1.33.1 does not ensure that u ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-51803 (LinuxServer.io Heimdall before 2.5.7 does not prevent use of icons tha ...)
 	TODO: check
 CVE-2016-15038 (A vulnerability, which was classified as critical, was found in NUUO N ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5693d1de74b7c6399f1fcd5f36260f85edc8106e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5693d1de74b7c6399f1fcd5f36260f85edc8106e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240401/ba0f2fbb/attachment.htm>