[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Dec 5 10:21:44 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
12a76b7a by Moritz Muehlenhoff at 2024-12-05T11:21:25+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,47 +1,47 @@
 CVE-2024-54675 (app/webroot/js/workflows-editor/workflows-editor.js in MISP through 2. ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2024-54674 (app/View/GalaxyClusters/cluster_export_misp_galaxy.ctp in MISP through ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2024-54221 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-54014 (Improper authorization in handler for custom URL scheme issue in 'Skyl ...)
-	TODO: check
+	NOT-FOR-US: 'Skylark' App for Android
 CVE-2024-53982 (ZOO-Project is a C-based WPS (Web Processing Service) implementation.  ...)
-	TODO: check
+	NOT-FOR-US: ZOO-Project
 CVE-2024-51210 (Firepad through 1.5.11 allows remote attackers, who have knowledge of  ...)
-	TODO: check
+	NOT-FOR-US: Firepad
 CVE-2024-50947 (An issue in kmqtt v0.2.7 allows attackers to cause a Denial of Service ...)
-	TODO: check
+	NOT-FOR-US: kmqtt
 CVE-2024-42195 (HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This v ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2024-39219 (An issue in Aginode GigaSwitch V5 before version 7.06G allows authenti ...)
-	TODO: check
+	NOT-FOR-US: Aginode GigaSwitch
 CVE-2024-38829 (A vulnerability in VMware Tanzu Spring LDAP allows data exposure for c ...)
 	- libspring-java <unfixed> (unimportant)
 	NOTE: https://spring.io/security/cve-2024-38829
 	NOTE: Only supported for building applications shipped in Debian, see README.Debian.security
 CVE-2024-12188 (A vulnerability was found in 1000 Projects Library Management System 1 ...)
-	TODO: check
+	NOT-FOR-US: 1000 Projects Library Management System
 CVE-2024-12187 (A vulnerability was found in 1000 Projects Library Management System 1 ...)
-	TODO: check
+	NOT-FOR-US: 1000 Projects Library Management System
 CVE-2024-12186 (A vulnerability was found in code-projects Hotel Management System 1.0 ...)
-	TODO: check
+	NOT-FOR-US: code-projects Hotel Management System
 CVE-2024-12185 (A vulnerability has been found in code-projects Hotel Management Syste ...)
-	TODO: check
+	NOT-FOR-US: code-projects Hotel Management System
 CVE-2024-12183 (A vulnerability, which was classified as problematic, was found in Ded ...)
-	TODO: check
+	NOT-FOR-US: DedeCMS
 CVE-2024-12182 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: DedeCMS
 CVE-2024-12181 (A vulnerability classified as problematic was found in DedeCMS 5.7.116 ...)
-	TODO: check
+	NOT-FOR-US: DedeCMS
 CVE-2024-12180 (A vulnerability classified as problematic has been found in DedeCMS 5. ...)
-	TODO: check
+	NOT-FOR-US: DedeCMS
 CVE-2024-11429 (The Free Responsive Testimonials, Social Proof Reviews, and Customer R ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10881 (The LUNA RADIO PLAYER plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10178 (The Gutentor \u2013 Gutenberg Blocks \u2013 Page Builder for Gutenberg ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8962 (The WPBITS Addons For Elementor Page Builder plugin for WordPress is v ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-8894 (Out-of-bounds Writevulnerability was discovered in Open Design Allianc ...)
@@ -63,7 +63,7 @@ CVE-2024-54154 (In JetBrains YouTrack before 2024.3.51866 system takeover was po
 CVE-2024-54153 (In JetBrains YouTrack before 2024.3.51866 unauthenticated database bac ...)
 	NOT-FOR-US: JetBrains YouTrack
 CVE-2024-54134 (A publish-access account was compromised for `@solana/web3.js`, a Java ...)
-	TODO: check
+	NOT-FOR-US: @solana/web3.js
 CVE-2024-54132 (The GitHub CLI is GitHub\u2019s official command line tool. A security ...)
 	- gh <unfixed>
 	NOTE: https://github.com/cli/cli/security/advisories/GHSA-2m9h-r57g-45pj



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12a76b7a2cc5b64878b824c153c8a57ec8033d9f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12a76b7a2cc5b64878b824c153c8a57ec8033d9f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241205/deef62e9/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list