[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jul 31 21:38:38 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
516d8659 by Salvatore Bonaccorso at 2024-07-31T22:38:04+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -61,7 +61,7 @@ CVE-2024-3083 (A \u201cCWE-352: Cross-Site Request Forgery (CSRF)\u201d can be e
 CVE-2024-3082 (A \u201cCWE-256: Plaintext Storage of a Password\u201d affecting the a ...)
 	TODO: check
 CVE-2024-39694 (Duende IdentityServer is an OpenID Connect and OAuth 2.x framework for ...)
-	TODO: check
+	NOT-FOR-US: Duende IdentityServer
 CVE-2024-39379 (Acrobat for Edge versions 126.0.2592.81 and earlier are affected by an ...)
 	NOT-FOR-US: Acrobat for Edge
 CVE-2024-39318 (The Ibexa Admin UI Bundle contains all the necessary parts to run the  ...)
@@ -93,7 +93,7 @@ CVE-2024-31200 (A \u201cCWE-201: Insertion of Sensitive Information Into Sent Da
 CVE-2024-31199 (A \u201cCWE-79: Improper Neutralization of Input During Web Page Gener ...)
 	TODO: check
 CVE-2024-2508 (The WP Mobile Menu plugin for WordPress is vulnerable to unauthorized  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-23444 (It was discovered by Elastic engineering that when elasticsearch-certu ...)
 	TODO: check
 CVE-2024-7306 (A vulnerability, which was classified as critical, was found in Source ...)
@@ -105621,7 +105621,7 @@ CVE-2023-28151 (An issue was discovered in Independentsoft JSpreadsheet before 1
 CVE-2023-28150 (An issue was discovered in Independentsoft JODF before 1.1.110. The AP ...)
 	NOT-FOR-US: Independentsoft
 CVE-2023-28149 (An issue was discovered in the IhisiServiceSmm module in Insyde Insyde ...)
-	TODO: check
+	NOT-FOR-US: Insyde
 CVE-2023-28148
 	RESERVED
 CVE-2023-28147 (An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/516d86598c26667a9cd0631083a3b78b6e75a2a2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/516d86598c26667a9cd0631083a3b78b6e75a2a2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240731/62c0ab7e/attachment.htm>

More information about the debian-security-tracker-commits mailing list