[Git][security-tracker-team/security-tracker][master] 2 commits: Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Dec 5 20:33:50 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
79f7883b by Salvatore Bonaccorso at 2024-12-05T21:33:37+01:00
Process some NFUs

- - - - -
266a89cd by Salvatore Bonaccorso at 2024-12-05T21:33:39+01:00
Add CVE-2024-54001/kanboard

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,23 +1,24 @@
 CVE-2024-6784 (Server-Side Request Forgery vulnerabilities were found providing a pot ...)
-	TODO: check
+	NOT-FOR-US: ABB
 CVE-2024-6516 (Cross Site Scripting vulnerabilities where found providing a potential ...)
-	TODO: check
+	NOT-FOR-US: ABB
 CVE-2024-6515 (Web browser interface may manipulate application username/password in  ...)
-	TODO: check
+	NOT-FOR-US: ABB
 CVE-2024-54679 (CyberPanel (aka Cyber Panel) before 6778ad1 does not require the Filem ...)
-	TODO: check
+	NOT-FOR-US: CyberPanel (aka Cyber Panel)
 CVE-2024-54130 (The NASA\u2019s Interplanetary Overlay Network (ION) is an implementat ...)
-	TODO: check
+	NOT-FOR-US: NASA ION-DTN
 CVE-2024-54129 (The NASA\u2019s Interplanetary Overlay Network (ION) is an implementat ...)
-	TODO: check
+	NOT-FOR-US: NASA ION-DTN
 CVE-2024-54128 (Directus is a real-time API and App dashboard for managing SQL databas ...)
-	TODO: check
+	NOT-FOR-US: Directus
 CVE-2024-54127 (This vulnerability exists in the TP-Link Archer C50 due to presence of ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2024-54126 (This vulnerability exists in the TP-Link Archer C50 due to improper si ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2024-54001 (Kanboard is project management software that focuses on the Kanban met ...)
-	TODO: check
+	- kanboard <unfixed>
+	NOTE: https://github.com/kanboard/kanboard/security/advisories/GHSA-4vvp-jf72-chrj
 CVE-2024-53857 (rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP a ...)
 	TODO: check
 CVE-2024-53856 (rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/28000f256f3e1fe1bfbd27cf952bd5f1f4e7ef70...266a89cd2d60d187c8d7b4c34860dbfed4a08295

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/28000f256f3e1fe1bfbd27cf952bd5f1f4e7ef70...266a89cd2d60d187c8d7b4c34860dbfed4a08295
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241205/7dbb45b7/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list