[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Apr 3 09:50:33 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4f4b16bb by Salvatore Bonaccorso at 2024-04-03T10:46:56+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,25 +3,25 @@ CVE-2024-3248 (In Xpdf 4.05 (and earlier), a PDF object loop in the attachments
 CVE-2024-3247 (In Xpdf 4.05 (and earlier), a PDF object loop in an object stream lead ...)
 	TODO: check
 CVE-2024-3227 (A vulnerability was found in Panwei eoffice OA up to 9.5. It has been  ...)
-	TODO: check
+	NOT-FOR-US: Panwei eoffice OA
 CVE-2024-3226 (A vulnerability was found in Campcodes Online Patient Record Managemen ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Patient Record Management System
 CVE-2024-3225 (A vulnerability was found in SourceCodester PHP Task Management System ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester PHP Task Management System
 CVE-2024-3224 (A vulnerability has been found in SourceCodester PHP Task Management S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester PHP Task Management System
 CVE-2024-3223 (A vulnerability, which was classified as critical, was found in Source ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester PHP Task Management System
 CVE-2024-3222 (A vulnerability, which was classified as critical, has been found in S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester PHP Task Management System
 CVE-2024-3221 (A vulnerability classified as critical was found in SourceCodester PHP ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester PHP Task Management System
 CVE-2024-3218 (A vulnerability classified as critical has been found in Shibang Commu ...)
-	TODO: check
+	NOT-FOR-US: Shibang Communications IP Network Intercom Broadcasting System
 CVE-2024-3209 (A vulnerability was found in UPX up to 4.2.2. It has been rated as cri ...)
 	TODO: check
 CVE-2024-3207 (A vulnerability was found in ermig1979 Simd up to 6.0.134. It has been ...)
-	TODO: check
+	NOT-FOR-US: ermig1979 Simd
 CVE-2024-3205 (A vulnerability was found in yaml libyaml up to 0.2.5 and classified a ...)
 	TODO: check
 CVE-2024-3204 (A vulnerability has been found in c-blosc2 up to 2.13.2 and classified ...)
@@ -29,89 +29,89 @@ CVE-2024-3204 (A vulnerability has been found in c-blosc2 up to 2.13.2 and class
 CVE-2024-3203 (A vulnerability, which was classified as critical, was found in c-blos ...)
 	TODO: check
 CVE-2024-3202 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: codelyfe Stupid Simple CMS
 CVE-2024-3162 (The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-31013 (Cross Site Scripting (XSS) vulnerability in emlog version Pro 2.3, all ...)
-	TODO: check
+	NOT-FOR-US: emlog
 CVE-2024-31012 (An issue was discovered in SEMCMS v.4.8, allows remote attackers to ex ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2024-31011 (Arbitrary file write vulnerability in beescms v.4.0, allows a remote a ...)
-	TODO: check
+	NOT-FOR-US: beescms
 CVE-2024-31010 (SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker  ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2024-31009 (SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker  ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2024-31008 (An issue was discovered in WUZHICMS version 4.1.0, allows an attacker  ...)
-	TODO: check
+	NOT-FOR-US: WUZHICMS
 CVE-2024-30998 (SQL Injection vulnerability in PHPGurukul Men Salon Management System  ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Men Salon Management System
 CVE-2024-30371 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30370 (RARLAB WinRAR Mark-Of-The-Web Bypass Vulnerability. This vulnerability ...)
 	TODO: check
 CVE-2024-30367 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30365 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30364 (Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Discl ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30363 (Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Discl ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30362 (Foxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30361 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30360 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30359 (Foxit PDF Reader AcroForm 3D Out-Of-Bounds Read Remote Code Execution  ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30358 (Foxit PDF Reader AcroForm User-After-Free Remote Code Execution Vulner ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30357 (Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execut ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30356 (Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vu ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30355 (Foxit PDF Reader AcroForm Out-Of-Bounds Write Remote Code Execution Vu ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30354 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30353 (Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vul ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30352 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30351 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30350 (Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure  ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30349 (Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Exec ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30348 (Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Exec ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30347 (Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Discl ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30346 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30345 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30344 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30343 (Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulne ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30342 (Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulne ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30341 (Foxit PDF Reader Doc Object Out-Of-Bounds Read Remote Code Execution V ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30340 (Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure  ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30339 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30338 (Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulne ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30337 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30336 (Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnera ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2024-30166 (In Mbed TLS 3.3.0 through 3.5.2 before 3.6.0, a malicious client can c ...)
 	TODO: check
 CVE-2024-2879 (The LayerSlider plugin for WordPress is vulnerable to SQL Injection vi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f4b16bbcfce14e15a34f26cc5e2b62093bb0054

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f4b16bbcfce14e15a34f26cc5e2b62093bb0054
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240403/1aa2f67b/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list