[Git][security-tracker-team/security-tracker][master] 2 commits: auto-nfu: Add rule for AMI

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Mar 12 08:50:24 GMT 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8c2c222d by Moritz Muehlenhoff at 2025-03-12T09:45:44+01:00
auto-nfu: Add rule for AMI

Just proprietary firmware things:

Total CVEs from AMI: 41
Total CVEs from AMI with packages assigned: 0

- - - - -
a4edb2de by Moritz Muehlenhoff at 2025-03-12T09:49:53+01:00
NFUs

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -552,9 +552,9 @@ CVE-2024-55592 (An incorrect authorization vulnerability [CWE-863] in FortiSIEM
 CVE-2024-55590 (Multiple improper neutralization of special elements used in an OS com ...)
 	NOT-FOR-US: Fortinet
 CVE-2024-54085 (AMI\u2019s SPx contains a vulnerability in the BMC where an Attacker m ...)
-	TODO: check
+	NOT-FOR-US: AMI
 CVE-2024-54084 (APTIOV contains a vulnerability in BIOS where an attacker may cause a  ...)
-	TODO: check
+	NOT-FOR-US: AMI
 CVE-2024-54026 (An improper neutralization of special elements used in an sql command  ...)
 	NOT-FOR-US: Fortinet
 CVE-2024-54018 (Multipleimproper neutralization of special elements used in an OS Comm ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -1,4 +1,6 @@
 # Simple CNA based rules
+- reason: AMI
+  cna: AMI
 - reason: Apple
   cna: apple
 - reason: Arista Networks



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/5e7c33e0e66eb841ce0a0e46b513cb08ce889ab3...a4edb2dec1a3c38be8121ef21de761ff3aff2788

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/5e7c33e0e66eb841ce0a0e46b513cb08ce889ab3...a4edb2dec1a3c38be8121ef21de761ff3aff2788
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250312/a3f5b4bd/attachment.htm>

More information about the debian-security-tracker-commits mailing list