[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
753e8c37 by Salvatore Bonaccorso at 2024-01-27T09:38:25+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2024-23506 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-22862 (Integer overflow vulnerability in FFmpeg before n6.1, allows remote at ...)
 	TODO: check
 CVE-2024-22861 (Integer overflow vulnerability in FFmpeg before n6.1, allows attackers ...)
@@ -7,29 +7,29 @@ CVE-2024-22861 (Integer overflow vulnerability in FFmpeg before n6.1, allows att
 CVE-2024-22860 (Integer overflow vulnerability in FFmpeg before n6.1, allows remote at ...)
 	TODO: check
 CVE-2024-22283 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-22147 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0958 (A vulnerability was found in CodeAstro Stock Management System 1.0 and ...)
-	TODO: check
+	NOT-FOR-US: CodeAstro Stock Management System
 CVE-2024-0948 (A vulnerability, which was classified as problematic, has been found i ...)
 	TODO: check
 CVE-2024-0946 (A vulnerability classified as critical was found in 60IndexPage up to  ...)
-	TODO: check
+	NOT-FOR-US: 60IndexPage
 CVE-2024-0945 (A vulnerability classified as critical has been found in 60IndexPage u ...)
-	TODO: check
+	NOT-FOR-US: 60IndexPage
 CVE-2024-0824 (The Exclusive Addons for Elementor plugin for WordPress is vulnerable  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0697 (The Backuply \u2013 Backup, Restore, Migrate and Clone plugin for Word ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0667 (The Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact For ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0664 (The Meks Smart Social Widget plugin for WordPress is vulnerable to Sto ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0618 (The Contact Form Plugin \u2013 Fastest Contact Form Builder Plugin for ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-6497 (The WordPress Simple Shopping Cart plugin for WordPress is vulnerable  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-6482 (Use of encryption key derived from static information in Synaptics Fin ...)
 	TODO: check
 CVE-2023-6470
@@ -37,11 +37,11 @@ CVE-2023-6470
 CVE-2023-52389 (UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow a ...)
 	TODO: check
 CVE-2023-52187 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-48202 (Cross-Site Scripting (XSS) vulnerability in Sunlight CMS 8.0.1 allows  ...)
-	TODO: check
+	NOT-FOR-US: Sunlight CMS
 CVE-2023-48201 (Cross Site Scripting (XSS) vulnerability in Sunlight CMS v.8.0.1, allo ...)
-	TODO: check
+	NOT-FOR-US: Sunlight CMS
 CVE-2024-0444 [GStreamer-SA-2024-0001: AV1 codec parser potential buffer overflow during tile list parsing]
 	- gst-plugins-bad1.0 1.22.9-1
 	- gst-plugins-bad0.10 <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/753e8c37d80f60eb1324426231092ee4f957c559

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/753e8c37d80f60eb1324426231092ee4f957c559
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240127/9366e43e/attachment-0001.htm>