Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a8cbccce by Moritz Muehlenhoff at 2023-01-03T17:25:11+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,9 +5,9 @@ CVE-2023-0033
CVE-2022-4870
RESERVED
CVE-2015-10011 (A vulnerability classified as problematic has been found in
OpenDNS Op ...)
- TODO: check
+ NOT-FOR-US: OpenResolve
CVE-2015-10010 (A vulnerability was found in OpenDNS OpenResolve. It has been
rated as ...)
- TODO: check
+ NOT-FOR-US: OpenResolve
CVE-2023-22576
RESERVED
CVE-2023-22575
@@ -23,39 +23,39 @@ CVE-2023-0032
CVE-2023-0031
RESERVED
CVE-2021-4299 (A vulnerability classified as problematic was found in cronvel
string- ...)
- TODO: check
+ NOT-FOR-US: Node string-kit
CVE-2021-4298 (A vulnerability classified as critical has been found in
Hesburgh Libr ...)
- TODO: check
+ NOT-FOR-US: Sipity
CVE-2019-25093 (A vulnerability, which was classified as problematic, was
found in dra ...)
- TODO: check
+ NOT-FOR-US: Recent Threads On Index
CVE-2017-20161 (A vulnerability classified as problematic has been found in
rofl0r Mac ...)
- TODO: check
+ NOT-FOR-US: MacGeiger
CVE-2016-15007 (A vulnerability was found in
Centralized-Salesforce-Dev-Framework. It ...)
- TODO: check
+ NOT-FOR-US: Centralized-Salesforce-Dev-Framework
CVE-2016-15006 (A vulnerability, which was classified as problematic, has been
found i ...)
- TODO: check
+ NOT-FOR-US: EnigmaX
CVE-2015-10009 (A vulnerability was found in nterchange up to 4.1.0. It has
been rated ...)
- TODO: check
+ NOT-FOR-US: nterchange
CVE-2015-10008 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in
82Flex WE ...)
- TODO: check
+ NOT-FOR-US: 82Flex WEIPDCRM
CVE-2015-10007 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in
82Flex WE ...)
- TODO: check
+ NOT-FOR-US: 82Flex WEIPDCRM
CVE-2014-125038 (A vulnerability has been found in IS_Projecto2 and classified
as criti ...)
- TODO: check
+ NOT-FOR-US: IS_Projecto2
CVE-2014-125037 (A vulnerability, which was classified as critical, was found
in Licens ...)
- TODO: check
+ NOT-FOR-US: License To Kill
CVE-2014-125036 (A vulnerability, which was classified as problematic, has
been found i ...)
- TODO: check
+ NOT-FOR-US: Ansinle Debops ntp
CVE-2014-125035 (A vulnerability classified as problematic was found in
Jobs-Plugin. Af ...)
- TODO: check
+ NOT-FOR-US: mrbobbybryant/Jobs-Plugin
CVE-2014-125034 (A vulnerability has been found in stiiv contact_app and
classified as ...)
- TODO: check
+ NOT-FOR-US: stiiv/contact_app
CVE-2014-125033 (A vulnerability was found in rails-cv-app. It has been rated
as proble ...)
- TODO: check
+ NOT-FOR-US: rails-cv-app
CVE-2014-125032 (A vulnerability was found in porpeeranut go-with-me. It has
been decla ...)
- TODO: check
+ NOT-FOR-US: porpeeranut go-with-me
CVE-2014-125031 (A vulnerability was found in kirill2485 TekNet. It has been
classified ...)
- TODO: check
+ NOT-FOR-US: kirill2485 TekNet
CVE-2023-22571
RESERVED
CVE-2023-22570
@@ -141,7 +141,7 @@ CVE-2014-125030 (A vulnerability, which was classified as
critical, has been fou
CVE-2013-10006 (A vulnerability classified as problematic was found in Ziftr
primecoin ...)
NOT-FOR-US: Ziftr primecoin
CVE-2010-10002 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as
problema ...)
- TODO: check
+ NOT-FOR-US: simplesamlphp-module-openid
CVE-2023-22550
RESERVED
CVE-2023-22549
@@ -243,15 +243,15 @@ CVE-2023-22502
CVE-2023-22501
RESERVED
CVE-2023-0028 (Cross-site Scripting (XSS) - Stored in GitHub repository
linagora/twak ...)
- TODO: check
+ NOT-FOR-US: linagora/Twake
CVE-2022-48198 (The ntpd_driver component before 1.3.0 and 2.x before 2.2.0
for Robot ...)
- TODO: check
+ NOT-FOR-US: ros ntpd driver
CVE-2022-48197 (** UNSUPPORTED WHEN ASSIGNED ** Reflected cross-site scripting
(XSS) e ...)
- TODO: check
+ NOT-FOR-US: TreeView of YUI2
CVE-2018-25061 (A vulnerability was found in rgb2hex up to 0.1.5. It has been
rated as ...)
NOT-FOR-US: rgb2hex
CVE-2017-20160 (A vulnerability was found in flitto express-param up to 0.x.
It has be ...)
- TODO: check
+ NOT-FOR-US: express-param
CVE-2014-125029
RESERVED
CVE-2014-125028 (A vulnerability was found in valtech IDP Test Client and
classified as ...)
@@ -265,13 +265,13 @@ CVE-2022-4866 (Cross-site Scripting (XSS) - Stored in
GitHub repository usememos
CVE-2022-4865 (Cross-site Scripting (XSS) - Stored in GitHub repository
usememos/memo ...)
NOT-FOR-US: usememos
CVE-2017-20159 (A vulnerability was found in rf Keynote up to 0.x. It has been
rated a ...)
- TODO: check
+ NOT-FOR-US: rf Keynote
CVE-2017-20158 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in
vova07 Yi ...)
- TODO: check
+ NOT-FOR-US: vova07 Yii2 FileAPI Widget
CVE-2017-20157 (A vulnerability was found in Ariadne Component Library up to
2.x. It h ...)
NOT-FOR-US: Ariadne Component Library
CVE-2017-20156 (A vulnerability was found in Exciting Printer and classified
as critic ...)
- TODO: check
+ NOT-FOR-US: Exciting Printer
CVE-2014-125027 (A vulnerability has been found in Yuna Scatari TBDev up to
2.1.17 and ...)
NOT-FOR-US: Yuna Scatari TBDev
CVE-2022-4864 (Argument Injection in GitHub repository froxlor/froxlor prior
to 2.0.0 ...)
@@ -481,7 +481,7 @@ CVE-2022-48179
CVE-2021-4296 (A vulnerability, which was classified as problematic, has been
found i ...)
NOT-FOR-US: Unicorn - W3C's Unified Validator
CVE-2021-4295 (A vulnerability classified as problematic was found in ONC
code-valida ...)
- TODO: check
+ NOT-FOR-US: ONC code-validator-api
CVE-2018-25058 (A vulnerability classified as problematic has been found in
Twitter-Po ...)
NOT-FOR-US: Twitter-Post-Fetcher
CVE-2023-22475
@@ -531,9 +531,9 @@ CVE-2023-22454
CVE-2023-22453
RESERVED
CVE-2023-22452 (kenny2automate is a Discord bot. In the web interface for
server setti ...)
- TODO: check
+ NOT-FOR-US: kenny2automate
CVE-2023-22451 (Kiwi TCMS is an open source test management system. In version
11.6 an ...)
- TODO: check
+ NOT-FOR-US: Kiwi TCMS
CVE-2022-4823 (A vulnerability, which was classified as problematic, was found
in InS ...)
NOT-FOR-US: InSTEDD Nuntium
CVE-2022-4822 (A vulnerability, which was classified as problematic, has been
found i ...)
@@ -1055,7 +1055,7 @@ CVE-2018-25055 (A vulnerability was found in FarCry Solr
Pro Plugin up to 1.5.x.
CVE-2018-25054 (A vulnerability was found in shred cilla. It has been
classified as pr ...)
NOT-FOR-US: cilla
CVE-2018-25053 (A vulnerability was found in moappi Json2html up to 1.1.x and
classifi ...)
- TODO: check
+ NOT-FOR-US: json2html
CVE-2018-25052 (A vulnerability has been found in Catalyst-Plugin-Session up
to 0.40 a ...)
- libcatalyst-plugin-session-perl 0.41-1
NOTE:
https://github.com/perl-catalyst/Catalyst-Plugin-Session/commit/88d1b599e1163761c9bd53bec53ba078f13e09d4
(0.41)
@@ -1311,7 +1311,7 @@ CVE-2021-4287 (A vulnerability, which was classified as
problematic, was found i
CVE-2021-4286 (A vulnerability, which was classified as problematic, has been
found i ...)
NOT-FOR-US: cocagne pysrp
CVE-2021-4285 (A vulnerability classified as problematic was found in Nagios
NCPA. Th ...)
- TODO: check
+ NOT-FOR-US: Nagios NCPA
CVE-2021-4284 (A vulnerability classified as problematic has been found in
OpenMRS HT ...)
NOT-FOR-US: OpenMRS
CVE-2021-4283 (A vulnerability was found in FreeBPX voicemail. It has been
rated as p ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a8cbcccedb6469ccdf3e6f8807f53b508439c235
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a8cbcccedb6469ccdf3e6f8807f53b508439c235
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
