[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
db9dd331 by Salvatore Bonaccorso at 2024-06-27T22:44:37+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -117,11 +117,11 @@ CVE-2024-38515
 CVE-2024-35260 (Microsoft Dataverse Remote Code Execution Vulnerability)
 	TODO: check
 CVE-2024-35153 (IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-si ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-31916 (IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-31883 (IBM Security Verify Access 10.0.0.0 through 10.0.7.1, under certain co ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-31802 (DESIGNA ABACUS v.18 and before allows an attacker to bypass the paymen ...)
 	TODO: check
 CVE-2024-2882 (SDG Technologies PnPSCADA allows a remote attacker to attach various e ...)
@@ -141,15 +141,15 @@ CVE-2024-0947 (Reliance on Cookies without Validation and Integrity Checking vul
 CVE-2023-7270 (An issue was discovered in SoftMaker Office 2024 / NX before revision  ...)
 	TODO: check
 CVE-2023-42014 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.2.0.2 i ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-42011 (IBM Sterling B2B Integrator Standard Edition 6.1 and 6.2 does not rest ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-38371 (IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 uses weak ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-38370 (IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1, under ce ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-38368 (IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could dis ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-37371
 	- krb5 1.21.3-1
 	NOTE: https://github.com/krb5/krb5/commit/55fbf435edbe2e92dd8101669b1ce7144bc96fef (krb5-1.21.3-final)
@@ -88199,9 +88199,9 @@ CVE-2023-31000
 CVE-2023-30999 (IBM Security Access Manager Container (IBM Security Verify Access Appl ...)
 	NOT-FOR-US: IBM
 CVE-2023-30998 (IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could all ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-30997 (IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could all ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-30996 (IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 could be vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2023-30995 (IBM Aspera Faspex 4.0 through 4.4.2 and 5.0 through 5.0.5 could allow  ...)
@@ -90280,7 +90280,7 @@ CVE-2023-30432
 CVE-2023-30431 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5 ...)
 	NOT-FOR-US: IBM
 CVE-2023-30430 (IBM Security Verify Access 10.0.0 through 10.0.7.1 could allow a local ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2015-10100 (A vulnerability, which was classified as critical, has been found in D ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2014-125098 (A vulnerability was found in Dart http_server up to 0.9.5 and classifi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db9dd331a52cf4e10d6328aaeaf4debd53b2bad7

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db9dd331a52cf4e10d6328aaeaf4debd53b2bad7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240627/6a461d62/attachment-0001.htm>