[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Aug 29 09:58:44 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
002305b5 by Salvatore Bonaccorso at 2024-08-29T10:58:17+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12,43 +12,43 @@ CVE-2024-8193 (Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2024-7857 (The Media Library Folders plugin for WordPress is vulnerable to second ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7856 (The MP3 Audio Player \u2013 Music Player, Podcast Player & Radio by So ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7607 (The Front End Users plugin for WordPress is vulnerable to time-based S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7606 (The Front End Users plugin for WordPress is vulnerable to Stored Cross ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7418 (The The Post Grid \u2013 Shortcode, Gutenberg Blocks and Elementor Add ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7132 (The Page Builder Gutenberg Blocks  WordPress plugin before 3.1.13 does ...)
 	TODO: check
 CVE-2024-6927 (The Viral Signup  WordPress plugin through 2.1 does not sanitise and e ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-5987 (The WP Accessibility Helper (WAH) plugin for WordPress is vulnerable t ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-5857 (The Interactive Contact Form and Multi Step Form Builder with Drag & D ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-5417 (The Gutentor  WordPress plugin before 3.3.6 does not validate and esca ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4428 (Improper Privilege Management vulnerability in Menulux Information Tec ...)
-	TODO: check
+	NOT-FOR-US: Menulux Information Technologies Managment Portal
 CVE-2024-45440 (core/authorize.php in Drupal 11.x-dev allows Full Path Disclosure (eve ...)
 	TODO: check
 CVE-2024-45436 (extractFromZipFile in model.go in Ollama before 0.1.47 can extract mem ...)
-	TODO: check
+	NOT-FOR-US: Ollama
 CVE-2024-45435 (Chartist 1.x through 1.3.0 allows Prototype Pollution via the extend f ...)
-	TODO: check
+	NOT-FOR-US: Chartist
 CVE-2024-45233 (An issue was discovered in powermail extension through 12.3.5 for TYPO ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension
 CVE-2024-45232 (An issue was discovered in powermail extension through 12.3.5 for TYPO ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension
 CVE-2024-45059 (i-Educar is free, completely online school management software that al ...)
-	TODO: check
+	NOT-FOR-US: i-Educar
 CVE-2024-45058 (i-Educar is free, completely online school management software that al ...)
-	TODO: check
+	NOT-FOR-US: i-Educar
 CVE-2024-45057 (i-Educar is free, completely online school management software that al ...)
-	TODO: check
+	NOT-FOR-US: i-Educar
 CVE-2024-45048 (PHPSpreadsheet is a pure PHP library for reading and writing spreadshe ...)
 	TODO: check
 CVE-2024-45046 (PHPSpreadsheet is a pure PHP library for reading and writing spreadshe ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/002305b5d55cea6938d80b151122d28e11b90eae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/002305b5d55cea6938d80b151122d28e11b90eae
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240829/10b1c4be/attachment.htm>
