[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jun 29 21:57:47 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
64ddbf14 by Salvatore Bonaccorso at 2024-06-29T22:21:30+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2024-5819 (The Gutenberg Blocks with AI by Kadence WP \u2013 Page Builder Feature ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-39840 (Factorio before 1.1.101 allows a crafted server to execute arbitrary c ...)
-	TODO: check
+	NOT-FOR-US: Factorio
 CVE-2024-2386 (The WordPress Plugin for Google Maps \u2013 WP MAPS plugin for WordPre ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-25943 (iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50. ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-4017 (The Goya theme for WordPress is vulnerable to Reflected Cross-Site Scr ...)
-	TODO: check
+	NOT-FOR-US: WordPress theme
 CVE-2024-6405 (The Floating Social Buttons plugin for WordPress is vulnerable to Cros ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-6363 (The Stock Ticker plugin for WordPress is vulnerable to Stored Cross-Si ...)
@@ -35,9 +35,9 @@ CVE-2024-39302 (BigBlueButton is an open-source virtual classroom designed to he
 CVE-2024-38533 (ZKsync Era is a layer 2 rollup that uses zero-knowledge proofs to scal ...)
 	NOT-FOR-US: ZKsync Era
 CVE-2024-38532 (The NXP Data Co-Processor (DCP) is a built-in hardware module for spec ...)
-	TODO: check
+	NOT-FOR-US: NXP Data Co-Processor (DCP)
 CVE-2024-38525 (dd-trace-cpp is the Datadog distributed tracing for C++. When the libr ...)
-	TODO: check
+	NOT-FOR-US: dd-trace-cpp
 CVE-2024-38518 (BigBlueButton is an open-source virtual classroom designed to help tea ...)
 	NOT-FOR-US: BigBlueButton
 CVE-2019-25211 (parseWildcardRules in Gin-Gonic CORS middleware before 1.6.0 mishandle ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64ddbf14bf7d441e50df6e00329dfb61535f484a

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64ddbf14bf7d441e50df6e00329dfb61535f484a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240629/856e9215/attachment.htm>

More information about the debian-security-tracker-commits mailing list