[Git][security-tracker-team/security-tracker][master] NFUs

Tue, 10 Jan 2023 04:38:52 -0800 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
ee63c827 by Moritz Muehlenhoff at 2023-01-10T13:38:14+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13,7 +13,7 @@ CVE-2023-22905
 CVE-2023-22904
        RESERVED
 CVE-2023-22903 (api/views/user.py in LibrePhotos before e19e539 has incorrect 
access c ...)
-       TODO: check
+       NOT-FOR-US: LibrePhotos
 CVE-2023-22902
        RESERVED
 CVE-2023-22901
@@ -23,7 +23,7 @@ CVE-2023-22900
 CVE-2023-22899 (Zip4j through 2.11.2, as used in Threema and other products, 
does not  ...)
        TODO: check
 CVE-2023-22898 (workers/extractor.py in Pandora (aka pandora-analysis/pandora) 
1.3.0 a ...)
-       TODO: check
+       NOT-FOR-US: Pandora
 CVE-2023-22897
        RESERVED
 CVE-2023-22896
@@ -91,7 +91,7 @@ CVE-2023-0127
 CVE-2023-0126
        RESERVED
 CVE-2023-0125 (A vulnerability was found in Control iD Panel. It has been 
declared as ...)
-       TODO: check
+       NOT-FOR-US: Control iD Panel
 CVE-2023-0124
        RESERVED
 CVE-2023-0123
@@ -99,19 +99,19 @@ CVE-2023-0123
 CVE-2022-48251 (** DISPUTED ** The AES instructions on the ARMv8 platform do 
not have  ...)
        TODO: check
 CVE-2021-46871 (tag.ex in Phoenix Phoenix.HTML (aka phoenix_html) before 3.0.4 
allows  ...)
-       TODO: check
+       NOT-FOR-US: Phoenix.HTML
 CVE-2017-20166 (Ecto 2.2.0 lacks a certain protection mechanism associated 
with the in ...)
-       TODO: check
+       NOT-FOR-US: Ecto
 CVE-2015-10035 (A vulnerability was found in gperson angular-test-reporter and 
classif ...)
-       TODO: check
+       NOT-FOR-US: angular-test-reporter
 CVE-2015-10034 (A vulnerability has been found in j-nowak workout-organizer 
and classi ...)
-       TODO: check
+       NOT-FOR-US: j-nowak workout-organizer
 CVE-2015-10033 (A vulnerability, which was classified as problematic, was 
found in jvv ...)
-       TODO: check
+       NOT-FOR-US: jvvlee MerlinsBoard
 CVE-2014-125072 (A vulnerability classified as critical has been found in 
CherishSin kl ...)
-       TODO: check
+       NOT-FOR-US: CherishSin
 CVE-2014-125071 (A vulnerability was found in lukehutch Gribbit. It has been 
classified ...)
-       TODO: check
+       NOT-FOR-US: lukehutch Gribbit
 CVE-2023-22883
        RESERVED
 CVE-2023-22882
@@ -183,7 +183,7 @@ CVE-2022-4884 (Path-Traversal in MKP storing in Tribe29 
Checkmk <=2.0.0p32 an
 CVE-2022-4883
        RESERVED
 CVE-2022-4882 (A vulnerability was found in kaltura mwEmbed up to 2.91. It has 
been r ...)
-       TODO: check
+       NOT-FOR-US: Kaltura
 CVE-2022-48250
        RESERVED
 CVE-2022-48249
@@ -231,7 +231,7 @@ CVE-2022-46285
 CVE-2022-44617
        RESERVED
 CVE-2021-4311 (A vulnerability classified as problematic was found in Talend 
Open Stu ...)
-       TODO: check
+       NOT-FOR-US: Talend
 CVE-2021-4310 (A vulnerability was found in 01-Scripts 01-Artikelsystem. It 
has been  ...)
        NOT-FOR-US: 01-Scripts 01-Artikelsystem
 CVE-2017-20165 (A vulnerability classified as problematic has been found in 
debug-js d ...)
@@ -329,7 +329,7 @@ CVE-2022-4880 (A vulnerability was found in stakira 
OpenUtau. It has been classi
 CVE-2022-48229
        RESERVED
 CVE-2021-4306 (A vulnerability classified as problematic has been found in 
cronvel te ...)
-       TODO: check
+       NOT-FOR-US: Node terminal-kit
 CVE-2020-36645 (A vulnerability, which was classified as critical, was found 
in square ...)
        NOT-FOR-US: square squalor
 CVE-2020-36644 (A vulnerability has been found in jamesmartin Inline SVG up to 
1.7.1 a ...)
@@ -345,9 +345,9 @@ CVE-2016-15012 (** UNSUPPORTED WHEN ASSIGNED ** A 
vulnerability was found in for
 CVE-2015-10028 (A vulnerability has been found in ss15-this-is-sparta and 
classified a ...)
        NOT-FOR-US: ss15-this-is-sparta
 CVE-2015-10027 (A vulnerability, which was classified as problematic, has been 
found i ...)
-       TODO: check
+       NOT-FOR-US: hydrian TTRSS-Auth-LDAP
 CVE-2015-10026 (A vulnerability was found in tiredtyrant flairbot. It has been 
declare ...)
-       TODO: check
+       NOT-FOR-US: tiredtyrant flairbot
 CVE-2015-10025 (A vulnerability has been found in luelista miniConf up to 
1.7.6 and cl ...)
        NOT-FOR-US: luelista miniConf
 CVE-2015-10024 (A vulnerability classified as critical was found in hoffie 
larasync. T ...)
@@ -369,19 +369,19 @@ CVE-2014-125062 (A vulnerability classified as critical 
was found in ananich bit
 CVE-2014-125061 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in 
peel file ...)
        NOT-FOR-US: peel filebrokerrm
 CVE-2014-125060 (A vulnerability, which was classified as critical, was found 
in holden ...)
-       TODO: check
+       NOT-FOR-US: holdennb CollabCal
 CVE-2014-125059 (A vulnerability, which was classified as problematic, has 
been found i ...)
-       TODO: check
+       NOT-FOR-US: sternenseemann sternenblog
 CVE-2014-125058 (A vulnerability was found in LearnMeSomeCodes project3 and 
classified  ...)
-       TODO: check
+       NOT-FOR-US: LearnMeSomeCodes
 CVE-2014-125057 (A vulnerability was found in mrobit robitailletheknot. It has 
been cla ...)
-       TODO: check
+       NOT-FOR-US: robitailletheknot
 CVE-2014-125056 (A vulnerability was found in Pylons horus and classified as 
problemati ...)
-       TODO: check
+       NOT-FOR-US: Pylons horus
 CVE-2014-125055 (A vulnerability, which was classified as problematic, was 
found in agn ...)
-       TODO: check
+       NOT-FOR-US: agnivade easy-scrypt
 CVE-2014-125054 (A vulnerability classified as critical was found in koroket 
RedditOnRa ...)
-       TODO: check
+       NOT-FOR-US: RedditOnRails
 CVE-2023-22837
        RESERVED
 CVE-2023-22836



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee63c827bc56846bdc26a56dd0ec97a8b1bbad6f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee63c827bc56846bdc26a56dd0ec97a8b1bbad6f
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to