Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
27f06521 by Moritz Muehlenhoff at 2023-02-27T14:15:59+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1331,7 +1331,7 @@ CVE-2023-26604
CVE-2023-26603
RESERVED
CVE-2022-48363 (In MPD before 0.23.8, as used on Automotive Grade Linux and
other plat ...)
- TODO: check
+ NOT-FOR-US: MPD as used by Automotive Grade Linux
CVE-2023-26602 (ASUS ASMB8 iKVM firmware through 1.14.51 allows remote
attackers to ex ...)
NOT-FOR-US: ASUS ASMB8 iKVM firmware
CVE-2023-26601
@@ -1522,7 +1522,7 @@ CVE-2023-1027
CVE-2023-1026
RESERVED
CVE-2019-25105 (A vulnerability, which was classified as problematic, was
found in dro ...)
- TODO: check
+ NOT-FOR-US: dro.pm
CVE-2023-26543
RESERVED
CVE-2023-26542
@@ -1618,7 +1618,7 @@ CVE-2023-1012
CVE-2023-1011
RESERVED
CVE-2023-1010 (A vulnerability classified as critical was found in vox2png
1.0. Affec ...)
- TODO: check
+ NOT-FOR-US: vox2png
CVE-2023-1009 (A vulnerability classified as problematic has been found in
DrayTek Vi ...)
NOT-FOR-US: DrayTek Vigor 2960
CVE-2023-1008 (A vulnerability was found in Twister Antivirus 8.17. It has
been rated ...)
@@ -1630,7 +1630,7 @@ CVE-2023-1006 (A vulnerability was found in
SourceCodester Medical Certificate G
CVE-2023-1005 (A vulnerability was found in JP1016 Markdown-Electron and
classified a ...)
NOT-FOR-US: JP1016 Markdown-Electron
CVE-2023-1004 (A vulnerability has been found in MarkText up to 0.17.1 and
classified ...)
- TODO: check
+ NOT-FOR-US: MarkText
CVE-2023-1003
RESERVED
CVE-2023-1002 (A vulnerability, which was classified as problematic, has been
found i ...)
@@ -1732,7 +1732,7 @@ CVE-2023-26470
CVE-2023-26469
RESERVED
CVE-2023-26468 (Cerebrate 1.12 does not properly consider organisation_id
during creat ...)
- TODO: check
+ NOT-FOR-US: Cerebrate
CVE-2023-26467
RESERVED
CVE-2023-26466
@@ -1764,9 +1764,9 @@ CVE-2023-0996 (There is a vulnerability in the strided
image data parsing code i
NOTE: https://github.com/strukturag/libheif/pull/759
NOTE:
https://govtech-csg.github.io/security-advisories/2023/02/24/CVE-2023-0996.html
CVE-2023-0995 (Cross-site Scripting (XSS) - Stored in GitHub repository
unilogies/bum ...)
- TODO: check
+ NOT-FOR-US: Bumsys
CVE-2023-0994 (Improper Access Control in GitHub repository
francoisjacquet/rosariosi ...)
- TODO: check
+ NOT-FOR-US: RosarioSIS
CVE-2023-0993
RESERVED
CVE-2023-0992
@@ -2170,7 +2170,7 @@ CVE-2023-0948
CVE-2022-48341 (ThingsBoard 3.4.1 could allow a remote authenticated attacker
to achie ...)
NOT-FOR-US: ThingsBoard
CVE-2021-4326 (A vulnerability in Imperative framework which allows
already-privilege ...)
- TODO: check
+ NOT-FOR-US: Imperative framework
CVE-2023-26313
RESERVED
CVE-2023-26312
@@ -2321,7 +2321,7 @@ CVE-2023-26259
CVE-2023-26258
RESERVED
CVE-2023-26257 (An issue was discovered in the Connected Vehicle Systems
Alliance (COV ...)
- TODO: check
+ NOT-FOR-US: Connected Vehicle Systems Alliance
CVE-2023-26256
RESERVED
CVE-2023-26255
@@ -2703,7 +2703,7 @@ CVE-2023-26105
CVE-2023-26104 (All versions of the package lite-web-server are vulnerable to
Denial o ...)
TODO: check
CVE-2023-26103 (Versions of the package deno before 1.31.0 are vulnerable to
Regular E ...)
- TODO: check
+ NOT-FOR-US: Deno
CVE-2023-26102 (All versions of the package rangy are vulnerable to Prototype
Pollutio ...)
TODO: check
CVE-2023-0926
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27f06521df26bc06480098557d6d71fc594ac4b1
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27f06521df26bc06480098557d6d71fc594ac4b1
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
