[Git][security-tracker-team/security-tracker][master] Process some new NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jan 10 08:35:27 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ed202a1c by Salvatore Bonaccorso at 2024-01-10T09:34:57+01:00
Process some new NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,51 +1,51 @@
 CVE-2024-21643 (IdentityModel Extensions for .NET provide assemblies for web developer ...)
 	TODO: check
 CVE-2024-0364 (A vulnerability, which was classified as critical, was found in PHPGur ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Hospital Management System
 CVE-2024-0363 (A vulnerability, which was classified as critical, has been found in P ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Hospital Management System
 CVE-2024-0362 (A vulnerability classified as critical was found in PHPGurukul Hospita ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Hospital Management System
 CVE-2024-0361 (A vulnerability classified as critical has been found in PHPGurukul Ho ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Hospital Management System
 CVE-2024-0360 (A vulnerability was found in PHPGurukul Hospital Management System 1.0 ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Hospital Management System
 CVE-2024-0359 (A vulnerability was found in code-projects Simple Online Hotel Reserva ...)
-	TODO: check
+	NOT-FOR-US: code-projects Simple Online Hotel Reservation System
 CVE-2024-0358 (A vulnerability was found in DeShang DSO2O up to 4.1.0. It has been cl ...)
-	TODO: check
+	NOT-FOR-US: DeShang DSO2O
 CVE-2024-0357 (A vulnerability was found in coderd-repos Eva 1.0.0 and classified as  ...)
 	TODO: check
 CVE-2024-0356 (A vulnerability has been found in Mandelo ssm_shiro_blog 1.0 and class ...)
-	TODO: check
+	NOT-FOR-US: Mandelo ssm_shiro_blog
 CVE-2024-0355 (A vulnerability, which was classified as critical, was found in PHPGur ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Dairy Farm Shop Management System
 CVE-2024-0354 (A vulnerability, which was classified as critical, has been found in u ...)
 	TODO: check
 CVE-2024-0352 (A vulnerability classified as critical was found in Likeshop up to 2.5 ...)
-	TODO: check
+	NOT-FOR-US: Likeshop
 CVE-2024-0351 (A vulnerability classified as problematic has been found in SourceCode ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Engineers Online Portal
 CVE-2024-0350 (A vulnerability was found in SourceCodester Engineers Online Portal 1. ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Engineers Online Portal
 CVE-2024-0349 (A vulnerability was found in SourceCodester Engineers Online Portal 1. ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Engineers Online Portal
 CVE-2024-0348 (A vulnerability was found in SourceCodester Engineers Online Portal 1. ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Engineers Online Portal
 CVE-2024-0347 (A vulnerability was found in SourceCodester Engineers Online Portal 1. ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Engineers Online Portal
 CVE-2024-0346 (A vulnerability has been found in CodeAstro Vehicle Booking System 1.0 ...)
-	TODO: check
+	NOT-FOR-US: CodeAstro Vehicle Booking System
 CVE-2024-0345 (A vulnerability, which was classified as problematic, was found in Cod ...)
-	TODO: check
+	NOT-FOR-US: CodeAstro Vehicle Booking System
 CVE-2024-0344 (A vulnerability, which was classified as critical, has been found in s ...)
 	TODO: check
 CVE-2023-5770 (Proofpoint Enterprise Protection contains a vulnerability in the email ...)
-	TODO: check
+	NOT-FOR-US: Proofpoint Enterprise Protection
 CVE-2023-50136 (Cross Site Scripting (XSS) vulnerability in JFinalcms 5.0.0 allows att ...)
-	TODO: check
+	NOT-FOR-US: JFinalcms
 CVE-2023-48864 (SEMCMS v4.8 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2023-47997 (An issue discovered in BitmapAccess.cpp::FreeImage_AllocateBitmap in F ...)
 	TODO: check
 CVE-2023-47996 (An integer overflow vulnerability in Exif.cpp::jpeg_read_exif_dir in F ...)
@@ -59,11 +59,11 @@ CVE-2023-47993 (A Buffer out-of-bound read vulnerability in Exif.cpp::ReadInt32
 CVE-2023-47992 (An integer overflow vulnerability in FreeImageIO.cpp::_MemoryReadProc  ...)
 	TODO: check
 CVE-2023-41781 (There is a Cross-sitescripting (XSS) vulnerability in ZTE MF258. Due t ...)
-	TODO: check
+	NOT-FOR-US: ZTE
 CVE-2023-3043 (AMI\u2019s SPx contains a vulnerability in the BMC where an Attacker m ...)
 	TODO: check
 CVE-2023-38827 (Cross Site Scripting vulnerability in Follet School Solutions Destiny  ...)
-	TODO: check
+	NOT-FOR-US: Follet School Solutions Destiny
 CVE-2023-37297 (AMI\u2019s SPx contains a vulnerability in the BMC where an Attacker m ...)
 	TODO: check
 CVE-2023-37296 (AMI\u2019s SPx contains a vulnerability in the BMC where an Attacker m ...)
@@ -79,7 +79,7 @@ CVE-2023-34333 (AMI\u2019s SPx contains a vulnerability in the BMC where an Atta
 CVE-2023-34332 (AMI\u2019s SPx contains a vulnerability in the BMC where an Attacker m ...)
 	TODO: check
 CVE-2023-31446 (In Cassia Gateway firmware XC1000_2.1.1.2303082218 and XC2000_2.1.1.23 ...)
-	TODO: check
+	NOT-FOR-US: Cassia Gateway firmware
 CVE-2023-6476 (A flaw was found in CRI-O that involves an experimental annotation lea ...)
 	- cri-o <itp> (bug #979702)
 CVE-2024-0333
@@ -72992,7 +72992,7 @@ CVE-2022-46027
 CVE-2022-46026
 	RESERVED
 CVE-2022-46025 (Totolink N200RE_V5 V9.3.5u.6255_B20211224 is vulnerable to Incorrect A ...)
-	TODO: check
+	NOT-FOR-US: Totolink
 CVE-2022-46024
 	RESERVED
 CVE-2022-46023



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ed202a1ca6e67817bf836135f384c87e773f6d8c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ed202a1ca6e67817bf836135f384c87e773f6d8c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240110/8c620427/attachment.htm>

More information about the debian-security-tracker-commits mailing list