[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Mar 19 16:16:33 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5267801c by Moritz Muehlenhoff at 2024-03-19T17:16:03+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,61 +1,61 @@
 CVE-2024-2622 (A vulnerability was found in Fujian Kelixin Communication Command and  ...)
-	TODO: check
+	NOT-FOR-US: Fujian
 CVE-2024-2621 (A vulnerability was found in Fujian Kelixin Communication Command and  ...)
-	TODO: check
+	NOT-FOR-US: Fujian
 CVE-2024-2620 (A vulnerability has been found in Fujian Kelixin Communication Command ...)
-	TODO: check
+	NOT-FOR-US: Fujian
 CVE-2024-2604 (A vulnerability was found in SourceCodester File Manager App 1.0. It h ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2024-28865 (django-wiki is a wiki system for Django. Installations of django-wiki  ...)
-	TODO: check
+	NOT-FOR-US: django-wiki
 CVE-2024-28864 (SecureProps is a PHP library designed to simplify the encryption and d ...)
-	TODO: check
+	NOT-FOR-US: SecureProps
 CVE-2024-28855 (ZITADEL, open source authentication management software, uses Go templ ...)
-	TODO: check
+	NOT-FOR-US: Zitadel
 CVE-2024-28447 (Shenzhen Libituo Technology Co., Ltd LBT-T300-mini1 v1.2.9 was discove ...)
-	TODO: check
+	NOT-FOR-US: Shenzhen Libituo Technology Co
 CVE-2024-28446 (Shenzhen Libituo Technology Co., Ltd LBT-T300-mini1 v1.2.9 was discove ...)
-	TODO: check
+	NOT-FOR-US: Shenzhen Libituo Technology Co
 CVE-2024-28250 (Cilium is a networking, observability, and security solution with an e ...)
-	TODO: check
+	- cilium <itp> (bug #858303)
 CVE-2024-28249 (Cilium is a networking, observability, and security solution with an e ...)
-	TODO: check
+	- cilium <itp> (bug #858303)
 CVE-2024-28248 (Cilium is a networking, observability, and security solution with an e ...)
-	TODO: check
+	- cilium <itp> (bug #858303)
 CVE-2024-28237 (OctoPrint provides a web interface for controlling consumer 3D printer ...)
-	TODO: check
+	NOT-FOR-US: OctoPrint
 CVE-2024-26369 (An issue in the HistoryQosPolicy component of FastDDS v2.12.x, v2.11.x ...)
 	TODO: check
 CVE-2024-25942 (Dell PowerEdge Server BIOS contains an Improper SMM communication buff ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2024-24578 (RaspberryMatic is an open-source operating system for HomeMatic intern ...)
-	TODO: check
+	NOT-FOR-US: RaspberryMatic
 CVE-2024-24043 (Directory Traversal vulnerability in Speedy11CZ MCRPX v.1.4.0 and befo ...)
-	TODO: check
+	NOT-FOR-US: Speedy11CZ MCRPX
 CVE-2024-24042 (Directory Traversal vulnerability in Devan-Kerman ARRP v.0.8.1 and bef ...)
-	TODO: check
+	NOT-FOR-US: Devan-Kerman ARRP
 CVE-2024-23333 (LDAP Account Manager (LAM) is a webfrontend for managing entries store ...)
 	TODO: check
 CVE-2024-22453 (Dell PowerEdge Server BIOS contains a heap-based buffer overflow vulne ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2024-22412 (ClickHouse is an open-source column-oriented database management syste ...)
 	TODO: check
 CVE-2024-21504 (Versions of the package livewire/livewire from 3.3.5 and before 3.4.9  ...)
-	TODO: check
+	NOT-FOR-US: livewire
 CVE-2024-21503 (Versions of the package black before 24.3.0 are vulnerable to Regular  ...)
 	TODO: check
 CVE-2024-0055 (Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that ...)
-	TODO: check
+	NOT-FOR-US: AXIS OS
 CVE-2024-0054 (Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that ...)
-	TODO: check
+	NOT-FOR-US: AXIS OS
 CVE-2023-40280 (An issue was discovered in OpenClinic GA 5.247.01. An attacker can per ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic GA
 CVE-2023-40277 (An issue was discovered in OpenClinic GA 5.247.01. A Reflected Cross-S ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic GA
 CVE-2023-40276 (An issue was discovered in OpenClinic GA 5.247.01. An Unauthenticated  ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic GA
 CVE-2023-40275 (An issue was discovered in OpenClinic GA 5.247.01. It allows retrieval ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic GA
 CVE-2024-2599 (File upload restriction evasion vulnerability in AMSS++ version 4.31.  ...)
 	NOT-FOR-US: AMSS++
 CVE-2024-2598 (Vulnerability in AMSS++ version 4.31, which does not sufficiently enco ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5267801c81229759488ddfea6a811c03f5ff4ac6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5267801c81229759488ddfea6a811c03f5ff4ac6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240319/835e59c0/attachment.htm>

More information about the debian-security-tracker-commits mailing list