[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Feb 18 20:15:50 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2adcdd58 by Salvatore Bonaccorso at 2024-02-18T21:14:57+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,11 +19,11 @@ CVE-2024-24750 (Undici is an HTTP/1.1 client, written from scratch for Node.js.
 CVE-2024-22727 (Teltonika TRB1-series devices with firmware before TRB1_R_00.07.05.2 a ...)
 	TODO: check
 CVE-2024-22337 (IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Sec ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-22336 (IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Sec ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-22335 (IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Sec ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-21987 (SnapCenter versions 4.8 prior to 5.0 are susceptible to a  vulnerabili ...)
 	TODO: check
 CVE-2024-21984 (StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8  ar ...)
@@ -159,7 +159,7 @@ CVE-2023-52357 (Vulnerability of serialization/deserialization mismatch in the v
 CVE-2023-52097 (Vulnerability of foreground service restrictions being bypassed in the ...)
 	TODO: check
 CVE-2023-50951 (IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Sec ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-45918 (ncurses 6.4-20230610 has a NULL pointer dereference in tgetstr in tinf ...)
 	TODO: check
 CVE-2023-31728 (Teltonika RUT240 devices with firmware before 07.04.2, when bridge mod ...)
@@ -94004,7 +94004,7 @@ CVE-2022-42445 (HCL Launch could allow a user with administrative privileges, in
 CVE-2022-42444 (IBM App Connect Enterprise 11.0.0.8 through 11.0.0.19 and 12.0.1.0 thr ...)
 	NOT-FOR-US: IBM
 CVE-2022-42443 (An undisclosed issue in Trusteer iOS SDK for mobile versions prior to  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-42442 (IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 2 ...)
 	NOT-FOR-US: IBM
 CVE-2022-42441
@@ -95973,9 +95973,9 @@ CVE-2022-41740 (IBM Robotic Process Automation 20.12 through 21.0.6 could allow
 CVE-2022-41739 (IBM Spectrum Scale (IBM Spectrum Scale Container Native Storage Access ...)
 	NOT-FOR-US: IBM
 CVE-2022-41738 (IBM Storage Scale Container Native Storage Access 5.1.2.1 -through 5.1 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-41737 (IBM Storage Scale Container Native Storage Access 5.1.2.1 through 5.1. ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-41736 (IBM Spectrum Scale Container Native Storage Access   5.1.2.1 through 5 ...)
 	NOT-FOR-US: IBM
 CVE-2022-41735 (IBM Business Process Manager 21.0.1 through 21.0.3.1, 20.0.0.1 through ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2adcdd58ae7267383c5a2d91d5525475a4fb7897

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2adcdd58ae7267383c5a2d91d5525475a4fb7897
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240218/f4c6d05d/attachment.htm>

More information about the debian-security-tracker-commits mailing list