[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Apr 24 09:00:36 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c5fad303 by Moritz Muehlenhoff at 2024-04-24T10:00:08+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20,7 +20,7 @@ CVE-2024-3665 (The Rank Math SEO with AI SEO Tools plugin for WordPress is vulne
 CVE-2024-3491 (The Schema & Structured Data for WP & AMP plugin for WordPress is vuln ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-3185 (A key used in logging.json does not follow the least privilege princip ...)
-	TODO: check
+	NOT-FOR-US: Rapid7
 CVE-2024-33217 (Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based ...)
 	NOT-FOR-US: Tenda
 CVE-2024-33215 (Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based ...)
@@ -56,11 +56,11 @@ CVE-2024-32658 (FreeRDP is a free implementation of the Remote Desktop Protocol.
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v
 	NOTE: Fixed by: https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf (3.5.1)
 CVE-2024-32482 (The Tillitis TKey signer device application is an ed25519 signing tool ...)
-	TODO: check
+	NOT-FOR-US: Tillitis TKey
 CVE-2024-32258 (The network server of fceux 2.7.0 has a path traversal vulnerability,  ...)
 	TODO: check
 CVE-2024-31804 (An unquoted service path vulnerability in Terratec DMX_6Fire USB v.1.2 ...)
-	TODO: check
+	NOT-FOR-US: Terratec
 CVE-2024-31208 (Synapse is an open-source Matrix homeserver. A remote Matrix user with ...)
 	TODO: check
 CVE-2024-30800 (PX4 Autopilot v.1.14 allows an attacker to fly the drone into no-fly z ...)
@@ -72,9 +72,9 @@ CVE-2024-28627 (An issue in Flipsnack v.18/03/2024 allows a local attacker to ob
 CVE-2024-28130 (An incorrect type conversion vulnerability exists in the DVPSSoftcopyV ...)
 	TODO: check
 CVE-2024-21979 (An out of bounds write vulnerability in the AMD Radeon\u2122 user mode ...)
-	TODO: check
+	NOT-FOR-US: AMD Radeon Windows driver
 CVE-2024-21972 (An out of bounds write vulnerability in the AMD Radeon\u2122 user mode ...)
-	TODO: check
+	NOT-FOR-US: AMD Radeon Windows driver
 CVE-2024-0900 (The Elespare \u2013 Build Your Blog, News & Magazine Websites with Exp ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-47731 (IBM QRadar Suite Software 1.10.12.0 through 1.10.19.0 and IBM Cloud Pa ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5fad30314e892f1bb374ad9c1e8441185c47208

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5fad30314e892f1bb374ad9c1e8441185c47208
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240424/8cf6b98d/attachment.htm>

More information about the debian-security-tracker-commits mailing list