[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Dec 3 20:34:24 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
19e78355 by Salvatore Bonaccorso at 2024-12-03T21:34:01+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
 CVE-2024-9978 (in OpenHarmony v4.1.1 and prior versions allow a local attacker cause  ...)
-	TODO: check
+	NOT-FOR-US: OpenHarmony
 CVE-2024-54000 (Mobile Security Framework (MobSF) is a pen-testing, malware analysis a ...)
-	TODO: check
+	NOT-FOR-US: Mobile Security Framework (MobSF)
 CVE-2024-53999 (Mobile Security Framework (MobSF) is a pen-testing, malware analysis a ...)
-	TODO: check
+	NOT-FOR-US: Mobile Security Framework (MobSF)
 CVE-2024-53921 (An issue was discovered in the installer in Samsung Magician 8.1.0 on  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-53867 (Synapse is an open-source Matrix homeserver. The Sliding Sync feature  ...)
 	TODO: check
 CVE-2024-53863 (Synapse is an open-source Matrix homeserver. In Synapse versions befor ...)
 	TODO: check
 CVE-2024-53257 (Vitess is a database clustering system for horizontal scaling of MySQL ...)
-	TODO: check
+	NOT-FOR-US: Vitess
 CVE-2024-52815 (Synapse is an open-source Matrix homeserver. Synapse versions before 1 ...)
 	TODO: check
 CVE-2024-52805 (Synapse is an open-source Matrix homeserver. In Synapse before 1.120.1 ...)
@@ -307,9 +307,9 @@ CVE-2024-53566 (An issue in the action_listcategories() function of Sangoma Aste
 CVE-2024-53564 (An authenticated arbitrary file upload vulnerability in the component  ...)
 	NOT-FOR-US: FreePBX
 CVE-2024-53484 (Ever Traduora 0.20.0 and below is vulnerable to Privilege Escalation d ...)
-	TODO: check
+	NOT-FOR-US: Ever Traduora
 CVE-2024-53459 (Sysax Multi Server 6.99 is vulnerable to Cross Site Scripting (XSS) vi ...)
-	TODO: check
+	NOT-FOR-US: Sysax Multi Server
 CVE-2024-53364 (A SQL injection vulnerability was found in PHPGURUKUL Vehicle Parking  ...)
 	NOT-FOR-US: PHPGURUKUL Vehicle Parking Management System
 CVE-2024-53259 (quic-go is an implementation of the QUIC protocol in Go. An off-path a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19e7835502001d2ea1ea20241b8fa7effe31feaa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19e7835502001d2ea1ea20241b8fa7effe31feaa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241203/5c62f6bb/attachment.htm>

More information about the debian-security-tracker-commits mailing list