[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Jan 19 08:59:16 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a43a73e1 by Moritz Muehlenhoff at 2024-01-19T09:58:47+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,73 +1,73 @@
 CVE-2024-23387 (FusionPBX prior to 5.1.0 contains a cross-site scripting vulnerability ...)
-	TODO: check
+	NOT-FOR-US: FusionPBX
 CVE-2024-22424 (Argo CD is a declarative, GitOps continuous delivery tool for Kubernet ...)
-	TODO: check
+	NOT-FOR-US: Argo CD
 CVE-2024-22422 (AnythingLLM is an application that turns any document, resource, or pi ...)
-	TODO: check
+	NOT-FOR-US: AnythingLLM
 CVE-2024-22418 (Group-Office is an enterprise CRM and groupware tool. Affected version ...)
-	TODO: check
+	NOT-FOR-US: Group-Office
 CVE-2024-22415 (jupyter-lsp is a coding assistance tool for JupyterLab (code navigatio ...)
-	TODO: check
+	NOT-FOR-US: jupyter-lsp
 CVE-2024-22404 (Nextcloud files Zip app is a tool to create zip archives from one or m ...)
-	TODO: check
+	NOT-FOR-US: Nextcloud files Zip app
 CVE-2024-22403 (Nextcloud server is a self hosted personal cloud system. In affected v ...)
-	TODO: check
+	- nextcloud-server <itp> (bug #941708)
 CVE-2024-22402 (Nextcloud guests app is a utility to create guest users which can only ...)
-	TODO: check
+	NOT-FOR-US: Nextcloud guests app
 CVE-2024-22401 (Nextcloud guests app is a utility to create guest users which can only ...)
-	TODO: check
+	NOT-FOR-US: Nextcloud guests app
 CVE-2024-0696 (A vulnerability, which was classified as problematic, was found in Atr ...)
-	TODO: check
+	NOT-FOR-US: AtroCore AtroPIM
 CVE-2024-0695 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: EFS Easy Chat Server
 CVE-2024-0693 (A vulnerability classified as problematic was found in EFS Easy File S ...)
-	TODO: check
+	NOT-FOR-US: EFS Easy Chat Server
 CVE-2023-5716 (ASUS Armoury Crate has a vulnerability in arbitrary file write and all ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2023-5131 (A heap buffer-overflow exists in Delta Electronics ISPSoft. An anonymo ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-5130 (A buffer overflow vulnerability exists in Delta Electronics WPLSoft. A ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-51258 (A memory leak issue discovered in YASM v.1.3.0 allows a local attacker ...)
 	TODO: check
 CVE-2023-51217 (An issue discovered in TenghuTOS TWS-200 firmware version:V4.0-2018092 ...)
-	TODO: check
+	NOT-FOR-US: TenghuTOS TWS-200 firmware
 CVE-2023-50963 (IBM Storage Defender - Data Protect 1.0.0 through 1.4.1 is vulnerable  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-50614 (An issue discovereed in EBYTE E880-IR01-V1.1 allows an attacker to obt ...)
-	TODO: check
+	NOT-FOR-US: EBYTE
 CVE-2023-47718 (IBM Maximo Asset Management 7.6.1.3 and Manage Component 8.10 through  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-47092
 	REJECTED
 CVE-2023-43824 (A stack based buffer overflow exists in Delta Electronics Delta Indust ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43823 (A stack based buffer overflow exists in Delta Electronics Delta Indust ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43822 (A stack based buffer overflow exists in Delta Electronics Delta Indust ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43821 (A stack based buffer overflow exists in Delta Electronics Delta Indust ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43820 (A stack based buffer overflow exists in Delta Electronics Delta Indust ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43819 (A stack based buffer overflow exists in Delta Electronics Delta Indust ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43818 (A buffer overflow exists in Delta Electronics Delta Industrial Automat ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43817 (A buffer overflow exists in Delta Electronics Delta Industrial Automat ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43816 (A buffer overflow vulnerability exists in Delta Electronics Delta Indu ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-43815 (A buffer overflow vulnerability exists in Delta Electronics Delta Indu ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2023-40683 (IBM OpenPages with Watson 8.3 and 9.0 could allow remote attacker to b ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-38738 (IBM OpenPages with Watson 8.3 and 9.0 could provide weaker than expect ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-35020 (IBM Sterling Control Center 6.3.0 could allow a remote attacker to tra ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-32337 (IBM Maximo Spatial Asset Management 8.10 is vulnerable to server-side  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-0690 [possible information leak in tasks that ignore ANSIBLE_NO_LOG configuration]
 	- ansible-core <unfixed>
 	- ansible 5.4.0-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a43a73e10701a9760e40aa141a1506871db75836

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a43a73e10701a9760e40aa141a1506871db75836
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240119/aee7607a/attachment.htm>

More information about the debian-security-tracker-commits mailing list