[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Apr 4 21:39:13 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
30464fce by Salvatore Bonaccorso at 2024-04-04T22:38:30+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2024-3299 (Out-Of-Bounds Write, Use of Uninitialized Resource and Use-After-Free  ...)
-	TODO: check
+	NOT-FOR-US: Solidworks
 CVE-2024-3298 (Out-Of-Bounds Write and Type Confusion vulnerabilities exist in the fi ...)
-	TODO: check
+	NOT-FOR-US: Solidworks
 CVE-2024-3262 (Information exposure vulnerability in RT software affecting version 4. ...)
 	TODO: check
 CVE-2024-3250 (It was discovered that Pebble's read-file API and the associated pebbl ...)
@@ -9,17 +9,17 @@ CVE-2024-3250 (It was discovered that Pebble's read-file API and the associated
 CVE-2024-3116 (pgAdmin <= 8.4 is affected by a  Remote Code Execution (RCE) vulnerabi ...)
 	TODO: check
 CVE-2024-31215 (Mobile Security Framework (MobSF) is a security research platform for  ...)
-	TODO: check
+	NOT-FOR-US: Mobile Security Framework (MobSF)
 CVE-2024-31209 (oidcc is the OpenID Connect client library for Erlang. Denial of Servi ...)
 	TODO: check
 CVE-2024-31207 (Vite (French word for "quick", pronounced /vit/, like "veet") is a fro ...)
 	TODO: check
 CVE-2024-30565 (An issue was discovered in SeaCMS version 12.9, allows remote attacker ...)
-	TODO: check
+	NOT-FOR-US: SeaCMS
 CVE-2024-30266 (wasmtime is a runtime for WebAssembly. The 19.0.0 release of Wasmtime  ...)
-	TODO: check
+	NOT-FOR-US: wasmtime
 CVE-2024-30263 (macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js.  ...)
-	TODO: check
+	NOT-FOR-US: PDF Viewer Macro for XWiki
 CVE-2024-30261 (Undici is an HTTP/1.1 client, written from scratch for Node.js. An att ...)
 	TODO: check
 CVE-2024-30260 (Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30464fce7877ba10cdf1f4b2f477f89d6e30e611

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30464fce7877ba10cdf1f4b2f477f89d6e30e611
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240404/0038d00c/attachment.htm>


More information about the debian-security-tracker-commits mailing list