[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Sep 4 21:22:18 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6351fe80 by Salvatore Bonaccorso at 2024-09-04T22:21:18+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
 CVE-2024-8418 (A flaw was found in Aardvark-dns versions 1.12.0 and 1.12.1. They cont ...)
 	TODO: check
 CVE-2024-8417 (A vulnerability was found in \u4e91\u8bfe\u7f51\u7edc\u79d1\u6280\u670 ...)
-	TODO: check
+	NOT-FOR-US: Yunke Online School System
 CVE-2024-8416 (A vulnerability was found in SourceCodester Food Ordering Management S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Food Ordering Management System
 CVE-2024-8415 (A vulnerability was found in SourceCodester Food Ordering Management S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Food Ordering Management System
 CVE-2024-8414 (A vulnerability has been found in SourceCodester Insurance Management  ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Insurance Management System
 CVE-2024-8413 (Cross Site Scripting (XSS) vulnerability through the action parameter  ...)
-	TODO: check
+	NOT-FOR-US: Bioshox/Raspcontrol
 CVE-2024-8412 (A vulnerability, which was classified as problematic, was found in Lin ...)
-	TODO: check
+	NOT-FOR-US: LinuxOSsk Shakal-NG
 CVE-2024-8411 (A vulnerability, which was classified as problematic, has been found i ...)
 	TODO: check
 CVE-2024-8410 (A vulnerability classified as problematic was found in ABCD ABCD2 up t ...)
@@ -19,7 +19,7 @@ CVE-2024-8410 (A vulnerability classified as problematic was found in ABCD ABCD2
 CVE-2024-8409 (A vulnerability classified as problematic has been found in ABCD ABCD2 ...)
 	TODO: check
 CVE-2024-8408 (A vulnerability was found in Linksys WRT54G 4.21.5. It has been rated  ...)
-	TODO: check
+	NOT-FOR-US: Linksys
 CVE-2024-8407 (A vulnerability was found in alwindoss akademy up to 35caccea888ed63d5 ...)
 	TODO: check
 CVE-2024-8399 (Websites could utilize Javascript links to spoof URL addresses in the  ...)
@@ -27,39 +27,39 @@ CVE-2024-8399 (Websites could utilize Javascript links to spoof URL addresses in
 CVE-2024-8391 (In Eclipse Vert.x version 4.3.0 to 4.5.9, the gRPC server does not lim ...)
 	TODO: check
 CVE-2024-8325 (The Blockspare: Gutenberg Blocks & Patterns for Blogs, Magazines, Busi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8318 (The Attributes for Blocks plugin for WordPress is vulnerable to Stored ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8298 (Memory request vulnerability in the memory management module Impact: S ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2024-8289 (The MultiVendorX \u2013 The Ultimate WooCommerce Multivendor Marketpla ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8123 (The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordP ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8121 (The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordP ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8119 (The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordP ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8117 (The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordP ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8106 (The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordP ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8104 (The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordP ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8102 (The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordP ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7950 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7923 (An authentication bypass vulnerability has been identified in Pulpcore ...)
 	TODO: check
 CVE-2024-7870 (The PixelYourSite \u2013 Your smart PIXEL (TAG) & API Manager and the  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7834 (A local privilege escalation is caused by Overwolf loading and executi ...)
 	TODO: check
 CVE-2024-7821
 	REJECTED
 CVE-2024-7786 (The Sensei LMS  WordPress plugin before 4.24.2 does not properly prote ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7078 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	TODO: check
 CVE-2024-7077 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6351fe803a52ead07ff46b61a3ead12861bdcf9e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6351fe803a52ead07ff46b61a3ead12861bdcf9e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240904/15089326/attachment.htm>

More information about the debian-security-tracker-commits mailing list