[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4bb59281 by Moritz Muehlenhoff at 2024-10-05T20:31:15+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -34,9 +34,9 @@ CVE-2024-47841 (Improper Limitation of a Pathname to a Restricted Directory ('Pa
 CVE-2024-47840 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
 	NOT-FOR-US: Apex MediaWiki extension
 CVE-2024-37869 (File Upload vulnerability in Itsourcecode Online Discussion Forum Proj ...)
-	TODO: check
+	NOT-FOR-US: Itsourcecode Online Discussion Forum
 CVE-2024-37868 (File Upload vulnerability in Itsourcecode Online Discussion Forum Proj ...)
-	TODO: check
+	NOT-FOR-US: Itsourcecode Online Discussion Forum
 CVE-2024-9515 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It has been ...)
 	NOT-FOR-US: D-Link
 CVE-2024-9514 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It has been ...)
@@ -52,7 +52,7 @@ CVE-2024-9482 (An out-of-bounds write in the engine module in AVG/Avast Antiviru
 CVE-2024-9481 (An out-of-bounds write in the engine module in AVG/Avast Antivirus sig ...)
 	NOT-FOR-US: AVG/Avast Antivirus
 CVE-2024-9410 (Ada.cx's Sentry configuration allowed for blind server-side request fo ...)
-	TODO: check
+	NOT-FOR-US: Ada.cx
 CVE-2024-9271 (The Re:WP plugin for WordPress is vulnerable to Stored Cross-Site Scri ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-9071 (The Easy Demo Importer \u2013 A Modern One-Click Demo Import Solution  ...)
@@ -68,7 +68,7 @@ CVE-2024-8148 (There is an unvalidated redirect vulnerability in Esri Portal for
 CVE-2024-7801 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	NOT-FOR-US: Microchip
 CVE-2024-6400 (Cleartext Storage of Sensitive Information vulnerability in Finrota Ne ...)
-	TODO: check
+	NOT-FOR-US: Finrota Netahsilat
 CVE-2024-47790 (** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Secur ...)
 	NOT-FOR-US: D3D Security IP Camera
 CVE-2024-47789 (** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Secur ...)
@@ -78,7 +78,7 @@ CVE-2024-47769 (IDURAR is open source ERP CRM accounting invoicing software. The
 CVE-2024-47768 (Lif Authentication Server is a server used by Lif to do various tasks  ...)
 	NOT-FOR-US: Lif Auth Server
 CVE-2024-47765 (Minecraft MOTD Parser is a PHP library to parse minecraft server motd. ...)
-	TODO: check
+	NOT-FOR-US: Minecraft MOTD Parser
 CVE-2024-47764 (cookie is a basic HTTP cookie parser and serializer for HTTP servers.  ...)
 	- node-cookie <unfixed>
 	NOTE: https://github.com/jshttp/cookie/security/advisories/GHSA-pxg6-pf52-xh8x



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4bb592814a19f4443714e6feb6a0fd6fa63a05d0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4bb592814a19f4443714e6feb6a0fd6fa63a05d0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241005/7d5b68bc/attachment-0001.htm>