[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
699c8f8e by Moritz Muehlenhoff at 2024-02-20T22:59:59+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -335,27 +335,27 @@ CVE-2023-52435 (In the Linux kernel, the following vulnerability has been resolv
 	- linux 6.6.11-1
 	NOTE: https://git.kernel.org/linus/23d05d563b7e7b0314e65c8e882bc27eac2da8e7 (6.7-rc6)
 CVE-2023-51770 (Arbitrary File Read Vulnerability in Apache Dolphinscheduler.  This is ...)
-	TODO: check
+	NOT-FOR-US: Apache Dolphinscheduler
 CVE-2023-51447 (Decidim is a participatory democracy framework. Starting in version 0. ...)
-	TODO: check
+	NOT-FOR-US: Decidim
 CVE-2023-50306 (IBM Common Licensing 9.0 could allow a local user to enumerate usernam ...)
 	NOT-FOR-US: IBM
 CVE-2023-50270 (Session Fixation Apache DolphinScheduler before version 3.2.0, which s ...)
-	TODO: check
+	NOT-FOR-US: Apache Dolphinscheduler
 CVE-2023-49250 (Because the HttpUtils class did not verify certificates, an attacker t ...)
-	TODO: check
+	NOT-FOR-US: Apache Dolphinscheduler
 CVE-2023-49109 (Exposure of Remote Code Execution in Apache Dolphinscheduler.  This is ...)
-	TODO: check
+	NOT-FOR-US: Apache Dolphinscheduler
 CVE-2023-48220 (Decidim is a participatory democracy framework. Starting in version 0. ...)
-	TODO: check
+	NOT-FOR-US: Decidim
 CVE-2023-47635 (Decidim is a participatory democracy framework. Starting in version 0. ...)
-	TODO: check
+	NOT-FOR-US: Decidim
 CVE-2023-47634 (Decidim is a participatory democracy framework. Starting in version 0. ...)
-	TODO: check
+	NOT-FOR-US: Decidim
 CVE-2023-45318 (A heap-based buffer overflow vulnerability exists in the HTTP Server f ...)
 	TODO: check
 CVE-2023-42791 (A relative path traversal in Fortinet FortiManager version 7.4.0 and 7 ...)
-	TODO: check
+	NOT-FOR-US: Fortinet
 CVE-2023-39541 (A denial of service vulnerability exists in the ICMP and ICMPv6 parsin ...)
 	TODO: check
 CVE-2023-39540 (A denial of service vulnerability exists in the ICMP and ICMPv6 parsin ...)
@@ -363,7 +363,7 @@ CVE-2023-39540 (A denial of service vulnerability exists in the ICMP and ICMPv6
 CVE-2023-38562 (A double-free vulnerability exists in the IP header loopback parsing f ...)
 	TODO: check
 CVE-2023-37495 (Internet passwords stored in Person documents in the Domino\xae Direct ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2023-52434 (In the Linux kernel, the following vulnerability has been resolved:  s ...)
 	- linux 6.6.8-1
 	NOTE: https://git.kernel.org/linus/af1689a9b7701d9907dfc84d2a4b57c4bc907144 (6.7-rc6)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/699c8f8ecc20f47714b621c52c8ccef0dfc48ad4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/699c8f8ecc20f47714b621c52c8ccef0dfc48ad4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240220/046bb2c5/attachment.htm>