[Git][security-tracker-team/security-tracker][master] Process some NFUs

Sun Jul 28 13:48:19 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
14ad2dcd by Salvatore Bonaccorso at 2024-07-28T14:47:26+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -27,23 +27,23 @@ CVE-2024-XXXX [RUSTSEC-2024-0350]
 	NOTE: https://rustsec.org/advisories/RUSTSEC-2024-0350.html
 	NOTE: https://github.com/advisories/GHSA-7w47-3wg8-547c
 CVE-2024-7153 (A vulnerability classified as problematic has been found in Netgear WN ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2024-7152 (A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been rate ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2024-42055 (Cervantes through 0.5-alpha allows stored XSS.)
-	TODO: check
+	NOT-FOR-US: Cervantes
 CVE-2024-42054 (Cervantes through 0.5-alpha accepts insecure file uploads.)
-	TODO: check
+	NOT-FOR-US: Cervantes
 CVE-2024-42053 (The MSI installer for Splashtop Streamer for Windows before 3.6.0.0 us ...)
-	TODO: check
+	NOT-FOR-US: MSI installer for Splashtop Streamer for Windows
 CVE-2024-42052 (The MSI installer for Splashtop Streamer for Windows before 3.5.8.0 us ...)
-	TODO: check
+	NOT-FOR-US: MSI installer for Splashtop Streamer for Windows
 CVE-2024-42051 (The MSI installer for Splashtop Streamer for Windows before 3.6.2.0 us ...)
-	TODO: check
+	NOT-FOR-US: MSI installer for Splashtop Streamer for Windows
 CVE-2024-42050 (The MSI installer for Splashtop Streamer for Windows before 3.7.0.0 us ...)
-	TODO: check
+	NOT-FOR-US: MSI installer for Splashtop Streamer for Windows
 CVE-2024-42049 (TightVNC (Server for Windows) before 2.8.84 allows attackers to connec ...)
-	TODO: check
+	NOT-FOR-US: TightVNC (Server for Windows)
 CVE-2024-7151 (A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been decl ...)
 	NOT-FOR-US: Tenda
 CVE-2024-6897 (The aThemes Starter Sites plugin for WordPress is vulnerable to Stored ...)
@@ -703,7 +703,7 @@ CVE-2024-41131 (ImageSharp is a 2D graphics API. An Out-of-bounds Write vulnerab
 CVE-2024-41130 (llama.cpp provides LLM inference in C/C++. Prior to b3427, llama.cpp c ...)
 	NOT-FOR-US: llama.cpp
 CVE-2024-41129 (The ops library is a Python framework for developing and testing Kuber ...)
-	TODO: check
+	NOT-FOR-US: operator python module (Pure Python framework for writing Juju charms)
 CVE-2024-40634 (Argo CD is a declarative, GitOps continuous delivery tool for Kubernet ...)
 	NOT-FOR-US: Argo CD
 CVE-2024-40075 (Laravel v11.x was discovered to contain an XML External Entity (XXE) v ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/14ad2dcd480fa5e7d8022b058a2e84803a795d38

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/14ad2dcd480fa5e7d8022b058a2e84803a795d38
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240728/c4c1015c/attachment.htm>
