[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue May 7 11:18:49 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
82abd7e1 by Moritz Muehlenhoff at 2024-05-07T12:18:13+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -17,63 +17,63 @@ CVE-2024-34532 (A SQL injection vulnerability in Yvan Dotet PostgreSQL Query Del
 CVE-2024-34413 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-31078 (in OpenHarmony v4.0.0 and prior versions allow a local attacker cause  ...)
-	TODO: check
+	NOT-FOR-US: OpenHarmony
 CVE-2024-30973 (An issue in V-SOL G/EPON ONU HG323AC-B with firmware version V2.0.08-2 ...)
-	TODO: check
+	NOT-FOR-US: V-SOL
 CVE-2024-2913 (A race condition vulnerability exists in the mintplex-labs/anything-ll ...)
-	TODO: check
+	NOT-FOR-US: anything-llm
 CVE-2024-29941 (Insecure storage of the ICT MIFARE and DESFire encryption keys in the  ...)
-	TODO: check
+	NOT-FOR-US: anything-llm
 CVE-2024-28725 (Cross Site Scripting (XSS) vulnerability in YzmCMS 7.0 allows attacker ...)
-	TODO: check
+	NOT-FOR-US: YzmCMS
 CVE-2024-27217 (in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitr ...)
-	TODO: check
+	NOT-FOR-US: OpenHarmony
 CVE-2024-23808 (in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitr ...)
-	TODO: check
+	NOT-FOR-US: OpenHarmony
 CVE-2024-22472 (A buffer Overflow vulnerability in Silicon Labs 500 Series Z-Wave devi ...)
-	TODO: check
+	NOT-FOR-US: Silicon Labs
 CVE-2024-20872 (Improper handling of insufficient privileges vulnerability in Talkback ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20871 (Improper authorization vulnerability in Samsung Keyboard prior to vers ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20870 (Improper verification of intent by broadcast receiver vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20869 (Improper privilege management vulnerability in Samsung Internet prior  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20868 (Improper input validation in Samsung Notes prior to version 4.4.15 all ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20867 (Improper privilege management vulnerability in Samsung Email prior to  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20866 (Authentication bypass vulnerability in Setupwizard prior to SMR May-20 ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20865 (Authentication bypass in bootloader prior to SMR May-2024 Release 1 al ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20864 (Improper access control vulnerability in DarManagerService prior to SM ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20863 (Out of bounds write vulnerability in SNAP in HAL prior to SMR May-2024 ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20862 (Out-of-bounds write in SveService prior to SMR May-2024 Release 1 allo ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20861 (Use after free vulnerability in SveService prior to SMR May-2024 Relea ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20860 (Improper export of android application components vulnerability in Tel ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20859 (Improper access control vulnerability in FactoryCamera prior to SMR Ma ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20858 (Improper access control vulnerability in setCocktailHostCallbacks of C ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20857 (Improper access control vulnerability in startListening of CocktailBar ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20856 (Improper Authentication vulnerability in Secure Folder prior to SMR Ma ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20855 (Improper access control vulnerability in multitasking framework prior  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-20821 (A vulnerability possible to reconfigure OTP allows local attackers to  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2024-1695 (A potential security vulnerability has been identified in the HP Appli ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2023-33548 (Cross Site Scripting (XSS) vulnerability in ASUS RT-AC51U with firmwar ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2024-4568 (In Xpdf 4.05 (and earlier), a PDF object loop in the PDF resources lea ...)
 	TODO: check
 CVE-2024-4549 (A denial of service vulnerability exists in Delta Electronics DIAEnerg ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82abd7e14a3779bf0385b774618dd571d363dd99

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82abd7e14a3779bf0385b774618dd571d363dd99
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240507/ee6f7f5c/attachment.htm>

More information about the debian-security-tracker-commits mailing list