[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Jan 14 15:22:54 GMT 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
222a8339 by Moritz Muehlenhoff at 2025-01-14T16:22:37+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -33,7 +33,7 @@ CVE-2025-22614 (WeGIA is an open source web manager with a focus on the Portugue
CVE-2025-22613 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
NOT-FOR-US: WeGIA
CVE-2025-22138 (@codidact/qpixel is a Q&A-based community knowledge-sharing software. ...)
- TODO: check
+ NOT-FOR-US: @codidact/qpixel
CVE-2025-22134 (When switching to other buffers using the :all command and visual mode ...)
- vim <unfixed>
NOTE: https://github.com/vim/vim/security/advisories/GHSA-5rgf-26wj-48v8
@@ -129,45 +129,45 @@ CVE-2024-57636 (An issue in the itc_sample_row_check component of openlink virtu
CVE-2024-57635 (An issue in the chash_array component of openlink virtuoso-opensource ...)
TODO: check
CVE-2024-57634 (An issue in the exp_copy component of MonetDB Server v11.49.1 allows a ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57633 (An issue in the exps_bind_column component of MonetDB Server v11.49.1 ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57632 (An issue in the is_column_unique component of MonetDB Server v11.49.1 ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57631 (An issue in the exp_ref component of MonetDB Server v11.49.1 allows at ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57630 (An issue in the exps_card component of MonetDB Server v11.49.1 allows ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57629 (An issue in the tail_type component of MonetDB Server v11.49.1 allows ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57628 (An issue in the exp_values_set_supertype component of MonetDB Server v ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57627 (An issue in the gc_col component of MonetDB Server v11.49.1 allows att ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57626 (An issue in the mat_join2 component of MonetDB Server v11.49.1 allows ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57625 (An issue in the merge_table_prune_and_unionize component of MonetDB Se ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57624 (An issue in the exp_atom component of MonetDB Server v11.49.1 allows a ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57623 (An issue in the HEAP_malloc component of MonetDB Server v11.49.1 allow ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57622 (An issue in the exp_bin component of MonetDB Server v11.49.1 allows at ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57621 (An issue in the GDKanalytical_correlation component of MonetDB Server ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57620 (An issue in the trimchars component of MonetDB Server v11.47.11 allows ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57619 (An issue in the atom_get_int component of MonetDB Server v11.47.11 all ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57618 (An issue in the bind_col_exp component of MonetDB Server v11.47.11 all ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57617 (An issue in the dameraulevenshtein component of MonetDB Server v11.49. ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57616 (An issue in the vscanf component of MonetDB Server v11.47.11 allows at ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-57615 (An issue in the BATcalcbetween_intern component of MonetDB Server v11. ...)
- TODO: check
+ NOT-FOR-US: MonetDB Server
CVE-2024-56323 (OpenFGA is an authorization/permission engine. IN OpenFGA v1.3.8 to v1 ...)
TODO: check
CVE-2024-56138 (notion-go is a collection of libraries for supporting sign and verify ...)
@@ -175,25 +175,25 @@ CVE-2024-56138 (notion-go is a collection of libraries for supporting sign and v
CVE-2024-51491 (notion-go is a collection of libraries for supporting sign and verify ...)
TODO: check
CVE-2024-13348 (The Smart Agenda \u2013 Prise de rendez-vous en ligne plugin for WordP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-13324
REJECTED
CVE-2024-13323 (The WP Booking Calendar plugin for WordPress is vulnerable to Stored C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-13154
REJECTED
CVE-2024-12398 (An improper privilege management vulnerability in the web management i ...)
TODO: check
CVE-2024-12365 (The W3 Total Cache plugin for WordPress is vulnerable to unauthorized ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12298 (We found a vulnerability Improper Restriction of XML External Entity R ...)
TODO: check
CVE-2024-12083 (Path Traversal Vulnerabilities (CWE-22) exist in NJ/NX-series Machine ...)
TODO: check
CVE-2024-12008 (The W3 Total Cache plugin for WordPress is vulnerable to Information E ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-12006 (The W3 Total Cache plugin for WordPress is vulnerable to unauthorized ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-11637
REJECTED
CVE-2024-11396 (The Event Monster \u2013 Event Management, Tickets Booking, Upcoming E ...)
@@ -201,57 +201,57 @@ CVE-2024-11396 (The Event Monster \u2013 Event Management, Tickets Booking, Upco
CVE-2024-11128 (A vulnerability in the BitdefenderVirusScanner binary as used inBitdef ...)
TODO: check
CVE-2023-42250 (Selesta Visual Access Manager < 4.42.2 is vulnerable to Cross Site Scr ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42249 (Selesta Visual Access Manager < 4.42.2 is vulnerable to Cross Site Scr ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42248 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42247 (Selesta Visual Access Manager < 4.42.2 is vulnerable to Cross Site Scr ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42246 (Selesta Visual Access Manager < 4.42.2 is vulnerable to Cross Site Scr ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42245 (Selesta Visual Access Manager < 4.42.2 is vulnerable to Cross Site Scr ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42244 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42243 (In Selesta Visual Access Manager < 4.42.2, an authenticated user can a ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42242 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42241 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42240 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42239 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42238 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42237 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42236 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42235 (An issue was discovered in Selesta Visual Access Manager (VAM) prior t ...)
- TODO: check
+ NOT-FOR-US: Selesta Visual Access Manager
CVE-2023-42234 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Cr ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42233 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Cr ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42232 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Di ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42231 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to In ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42230 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Cr ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42229 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Di ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42228 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to In ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42227 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Di ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42226 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Di ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2023-42225 (Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Di ...)
- TODO: check
+ NOT-FOR-US: Pat Infinite Solutions HelpdeskAdvanced
CVE-2025-23027 (next-forge is a Next.js project boilerplate for modern web application ...)
NOT-FOR-US: next-forge Next.js project
CVE-2025-23026 (jte (Java Template Engine) is a secure and lightweight template engine ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/222a83390d7f52849dab01023e8b3db68f5ba13b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/222a83390d7f52849dab01023e8b3db68f5ba13b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250114/1119a11b/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list