[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Mar 21 17:34:56 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
02661347 by Moritz Muehlenhoff at 2024-03-21T18:33:57+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2024-26307
+	NOT-FOR-US: Apache Doris
+CVE-2024-27438
+	NOT-FOR-US: Apache Doris
 CVE-2024-2754 (A vulnerability classified as critical has been found in SourceCodeste ...)
 	NOT-FOR-US: SourceCodester Complete E-Commerce Site
 CVE-2024-2748 (A Cross Site Request Forgery vulnerability was identified in GitHub En ...)
@@ -39,11 +43,11 @@ CVE-2024-29470 (OneBlog v2.3.4 was discovered to contain a stored cross-site scr
 CVE-2024-29469 (A stored cross-site scripting (XSS) vulnerability in OneBlog v2.3.4 al ...)
 	NOT-FOR-US: OneBlog
 CVE-2024-29037 (datahub-helm provides the Kubernetes Helm charts for deploying Datahub ...)
-	TODO: check
+	NOT-FOR-US: Datahub Helm chart
 CVE-2024-29036 (Saleor Storefront is software for building e-commerce experiences. Pri ...)
 	NOT-FOR-US: Saleor Storefront
 CVE-2024-29033 (OAuthenticator provides plugins for JupyterHub to use common OAuth pro ...)
-	TODO: check
+	NOT-FOR-US: JupyterHub plugin
 CVE-2024-29032 (Qiskit IBM Runtime is an environment that streamlines quantum computat ...)
 	NOT-FOR-US: IBM
 CVE-2024-29026 (Owncast is an open source, self-hosted, decentralized, single user liv ...)
@@ -67,7 +71,7 @@ CVE-2024-28834
 CVE-2024-28635 (Cross Site Scripting (XSS) vulnerability in SurveyJS Survey Creator v. ...)
 	NOT-FOR-US: SurveyJS Survey Creator
 CVE-2024-25294 (An SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sens ...)
-	TODO: check
+	NOT-FOR-US: REBUILD
 CVE-2024-24050 (Cross Site Scripting (XSS) vulnerability in Sourcecodester Workout Jou ...)
 	NOT-FOR-US: Sourcecodester Workout Journal App
 CVE-2024-22724 (An issue was discovered in osCommerce v4, allows local attackers to by ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/026613479709ac138e4992898e9fbb0379d25c6b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/026613479709ac138e4992898e9fbb0379d25c6b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240321/e8cfcbaa/attachment.htm>

More information about the debian-security-tracker-commits mailing list