[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jul 6 21:20:26 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f22ab479 by Salvatore Bonaccorso at 2024-07-06T22:19:54+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,27 +1,27 @@
 CVE-2024-6095 (A vulnerability in the /models/apply endpoint of mudler/localai versio ...)
-	TODO: check
+	NOT-FOR-US: mudler/localai
 CVE-2024-5616 (A Cross-Site Request Forgery (CSRF) vulnerability exists in mudler/Loc ...)
-	TODO: check
+	NOT-FOR-US: mudler/localai
 CVE-2024-37554 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-37553 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-37547 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-37546 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-37542 (Missing Authorization vulnerability in WpDevArt Responsive Image Galle ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-37541 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-37539 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-37260 (Server-Side Request Forgery (SSRF) vulnerability in Theme-Ruby Foxiz.T ...)
-	TODO: check
+	NOT-FOR-US: Theme-Ruby Foxiz
 CVE-2024-37234 (URL Redirection to Untrusted Site ('Open Redirect') vulnerability in K ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-37208 (Server-Side Request Forgery (SSRF) vulnerability in Robert Macchi WP S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-39486 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
 	- linux <unfixed>
 	[bookworm] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f22ab47919c75bc2d039f7072f866078d5919aa8

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f22ab47919c75bc2d039f7072f866078d5919aa8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240706/05d4b7f3/attachment.htm>

More information about the debian-security-tracker-commits mailing list