[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jul 23 13:45:57 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2f369856 by Salvatore Bonaccorso at 2024-07-23T14:34:22+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21,18 +21,18 @@ CVE-2024-6791 (A directory path traversal vulnerability exists when loading a vs
 CVE-2024-6717 (HashiCorp Nomad and Nomad Enterprise 1.6.12 up to 1.7.9, and 1.8.1 arc ...)
 	- nomad <removed>
 CVE-2024-6420 (The Hide My WP Ghost  WordPress plugin before 5.2.02 does not prevent  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6231 (The Request a Quote WordPress plugin before 2.4.1 does not sanitise an ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4260 (The Page Builder Gutenberg Blocks  WordPress plugin before 3.1.12 does ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-41012 (In the Linux kernel, the following vulnerability has been resolved:  f ...)
 	- linux 6.9.9-1
 	NOTE: https://git.kernel.org/linus/3cad1bc010416c6dd780643476bc59ed742436b9 (6.10-rc7)
 CVE-2024-40502 (SQL injection vulnerability in Hospital Management System Project in A ...)
-	TODO: check
+	NOT-FOR-US: Hospital Management System Project
 CVE-2024-24507 (Cross Site Scripting vulnerability in Act-On 2023 allows a remote atta ...)
-	TODO: check
+	NOT-FOR-US: Act-On
 CVE-2024-1575 (The improper privilege management vulnerability in the Zyxel WBE660S f ...)
 	TODO: check
 CVE-2024-6675 (A deserialization of untrusted data vulnerability exists in NI VeriSta ...)
@@ -234,7 +234,7 @@ CVE-2024-32152 (A blocklist bypass vulnerability exists in the LaTeX functionali
 CVE-2024-29073 (An vulnerability in the handling of Latex exists in Ankitects Anki 24. ...)
 	TODO: check
 CVE-2024-28698 (Directory Traversal vulnerability in Marimer LLC CSLA .Net before 8.0  ...)
-	TODO: check
+	NOT-FOR-US: Marimer LLC CSLA
 CVE-2024-26020 (An arbitrary script execution vulnerability exists in the MPV function ...)
 	TODO: check
 CVE-2024-25638 (dnsjava is an implementation of DNS in Java. Records in DNS replies ar ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2f369856f051f48710786667416467d557a34be0

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2f369856f051f48710786667416467d557a34be0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240723/837beda7/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list