[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Apr 8 13:49:53 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1fe4375b by Moritz Muehlenhoff at 2024-04-08T14:49:28+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2024-3437 (A vulnerability was found in SourceCodester Prison Management Sys
 CVE-2024-3436 (A vulnerability was found in SourceCodester Prison Management System 1 ...)
 	NOT-FOR-US: SourceCodester Prison Management System
 CVE-2024-3434 (A vulnerability classified as critical was found in CP Plus Wi-Fi Came ...)
-	TODO: check
+	NOT-FOR-US: CP Plus Wi-Fi Camera
 CVE-2024-3433 (A vulnerability classified as problematic has been found in PuneethRed ...)
 	NOT-FOR-US: PuneethReddyHC Event Management
 CVE-2024-3432 (A vulnerability was found in PuneethReddyHC Event Management 1.0. It h ...)
@@ -23,27 +23,27 @@ CVE-2024-31948 (In FRRouting (FRR) through 9.1, an attacker using a malformed Pr
 CVE-2024-31022 (An issue was discovered in CandyCMS version 1.0.0, allows remote attac ...)
 	NOT-FOR-US: CandyCMS
 CVE-2024-30675 (Unauthorized node injection vulnerability in ROS2 Iron Irwini in ROS_V ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30674 (Unauthorized access vulnerability in ROS2 Iron Irwini in ROS_VERSION i ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30672 (Arbitrary file upload vulnerability in ROS (Robot Operating System) Me ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30667 (Insecure deserialization vulnerability in ROS (Robot Operating System) ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30666 (A buffer overflow vulnerability has been discovered in the C++ compone ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30665 (An OS command injection vulnerability has been discovered in ROS (Robo ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30663 (An issue was discovered in the default configurations of ROS (Robot Op ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30662 (An issue was discovered in ROS (Robot Operating System) Melodic Moreni ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30661 (An unauthorized access vulnerability has been discovered in ROS Melodi ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-30659 (Shell Injection vulnerability in ROS (Robot Operating System) Melodic  ...)
-	TODO: check
+	NOTE: Bogus report on ROS, lacks all details and apparently never reported either
 CVE-2024-28744 (The password is empty in the initial configuration of ACERA 9010-08 fi ...)
-	TODO: check
+	NOT-FOR-US: ACERA
 CVE-2024-27488 (Incorrect Access Control vulnerability in ZLMediaKit versions 1.0 thro ...)
 	NOT-FOR-US: ZLMediaKit
 CVE-2024-23658 (In camera driver, there is a possible use after free due to a logic er ...)
@@ -189,7 +189,7 @@ CVE-2023-52713 (Vulnerability of improper permission control in the window manag
 CVE-2023-52382 (Vulnerability of improper control over foreground service notification ...)
 	NOT-FOR-US: Huawei
 CVE-2021-4438 (A vulnerability, which was classified as critical, has been found in k ...)
-	TODO: check
+	NOT-FOR-US: react-native-sms-user-consent
 CVE-2024-3417 (A vulnerability, which was classified as critical, has been found in S ...)
 	NOT-FOR-US: SourceCodester Online Courseware
 CVE-2024-3416 (A vulnerability classified as critical was found in SourceCodester Onl ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fe4375b445b033ded11185882d7f2336299db3f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fe4375b445b033ded11185882d7f2336299db3f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240408/09c31fbd/attachment.htm>

More information about the debian-security-tracker-commits mailing list