[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Feb 1 11:05:19 GMT 2024



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4a88fb14 by Moritz Muehlenhoff at 2024-02-01T12:04:55+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,39 +1,39 @@
 CVE-2024-24747 (MinIO is a High Performance Object Storage. When someone creates an ac ...)
-	TODO: check
+	- minio <itp> (bug #859207)
 CVE-2024-24573 (facileManager is a modular suite of web apps built with the sysadmin i ...)
-	TODO: check
+	NOT-FOR-US: facileManager
 CVE-2024-24572 (facileManager is a modular suite of web apps built with the sysadmin i ...)
-	TODO: check
+	NOT-FOR-US: facileManager
 CVE-2024-24571 (facileManager is a modular suite of web apps built with the sysadmin i ...)
-	TODO: check
+	NOT-FOR-US: facileManager
 CVE-2024-24548 (Payment EX Ver1.1.5b and earlier allows a remote unauthenticated attac ...)
-	TODO: check
+	NOT-FOR-US: Payment EX
 CVE-2024-23941 (Cross-site scripting vulnerability exists in Group Office prior to v6. ...)
-	TODO: check
+	NOT-FOR-US: Group Office
 CVE-2024-23653 (BuildKit is a toolkit for converting source code to build artifacts in ...)
-	TODO: check
+	NOT-FOR-US: BuildKit
 CVE-2024-23652 (BuildKit is a toolkit for converting source code to build artifacts in ...)
-	TODO: check
+	NOT-FOR-US: BuildKit
 CVE-2024-23651 (BuildKit is a toolkit for converting source code to build artifacts in ...)
-	TODO: check
+	NOT-FOR-US: BuildKit
 CVE-2024-23650 (BuildKit is a toolkit for converting source code to build artifacts in ...)
-	TODO: check
+	NOT-FOR-US: BuildKit
 CVE-2024-22859 (Cross-Site Request Forgery (CSRF) vulnerability in livewire before v3. ...)
-	TODO: check
+	NOT-FOR-US: livewire
 CVE-2024-1130 (The NEX-Forms \u2013 Ultimate Form Builder \u2013 Contact forms and mu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-1129 (The NEX-Forms \u2013 Ultimate Form Builder \u2013 Contact forms and mu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-1117 (A vulnerability was found in openBI up to 1.0.8. It has been declared  ...)
-	TODO: check
+	NOT-FOR-US: openBI
 CVE-2024-0907 (The NEX-Forms \u2013 Ultimate Form Builder \u2013 Contact forms and mu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0831 (Vault and Vault Enterprise (\u201cVault\u201d) may expose sensitive in ...)
-	TODO: check
+	NOT-FOR-US: HashiCorp Vault
 CVE-2023-7069 (The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-51939 (An issue in the cp_bbs_sig function in relic/src/cp/relic_cp_bbs.c of  ...)
-	TODO: check
+	NOT-FOR-US: relic-toolkit
 CVE-2024-0853 [OCSP verification bypass with TLS session reuse]
 	- curl 8.6.0-1
 	[bookworm] - curl <not-affected> (Vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4a88fb14c46c501db687bb6d7e7eddb22ebfc775

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4a88fb14c46c501db687bb6d7e7eddb22ebfc775
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240201/648e4f0a/attachment.htm>


More information about the debian-security-tracker-commits mailing list