Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
51ae3929 by Salvatore Bonaccorso at 2023-05-24T10:49:11+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2,17 +2,17 @@ CVE-2023-32697 (SQLite JDBC is a library for accessing and
creating SQLite datab
- xerial-sqlite-jdbc <unfixed>
NOTE:
https://github.com/xerial/sqlite-jdbc/security/advisories/GHSA-6phf-6h5g-97j2
CVE-2023-31763 (Weak security in the transmitter of AGShome Smart Alarm v1.0
allows at ...)
- TODO: check
+ NOT-FOR-US: AGShome Smart Alarm
CVE-2023-31762 (Weak security in the transmitter of Digoo DG-HAMB Smart Home
Security ...)
- TODO: check
+ NOT-FOR-US: Digoo DG-HAMB Smart Home Security System
CVE-2023-31761 (Weak security in the transmitter of Blitzwolf BW-IS22 Smart
Home Secur ...)
- TODO: check
+ NOT-FOR-US: Blitzwolf BW-IS22 Smart Home Security Alarm
CVE-2023-31759 (Weak Security in the 433MHz keyfob of Kerui W18 Alarm System
v1.0 allo ...)
- TODO: check
+ NOT-FOR-US: Kerui W18 Alarm System
CVE-2023-31747 (Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to
contain a ...)
- TODO: check
+ NOT-FOR-US: Wondershare Filmora 12
CVE-2023-31726 (AList 3.15.1 is vulnerable to Incorrect Access Control, which
can be e ...)
- TODO: check
+ NOT-FOR-US: AList
CVE-2023-2859 (Code Injection in GitHub repository nilsteampassnet/teampass
prior to ...)
TODO: check
CVE-2023-2498 (The Go Pricing - WordPress Responsive Pricing Tables plugin for
WordPr ...)
@@ -10161,7 +10161,7 @@ CVE-2023-28450 (An issue was discovered in Dnsmasq
before 2.90. The default maxi
[buster] - dnsmasq <no-dsa> (Minor issue)
NOTE:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=eb92fb32b746f2104b0f370b5b295bb8dd4bd5e5
CVE-2023-1424 (Buffer Copy without Checking Size of Input ('Classic Buffer
Overflow') ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2023-1423
RESERVED
CVE-2023-1422
@@ -11690,7 +11690,7 @@ CVE-2023-28017
CVE-2023-28016
RESERVED
CVE-2023-28015 (The HCL Domino AppDev Pack IAM service is susceptible to a
User Accoun ...)
- TODO: check
+ NOT-FOR-US: HCL
CVE-2023-28014
RESERVED
CVE-2023-28013
@@ -25413,21 +25413,21 @@ CVE-2023-23307
CVE-2023-23306 (The `Toybox.Ant.BurstPayload.add` API method in CIQ API
version 2.2.0 ...)
TODO: check
CVE-2023-23305 (The GarminOS TVM component in CIQ API version 1.0.0 through
4.1.7 is v ...)
- TODO: check
+ NOT-FOR-US: GarminOS TVM component in CIQ API
CVE-2023-23304 (The GarminOS TVM component in CIQ API version 2.1.0 through
4.1.7 allo ...)
- TODO: check
+ NOT-FOR-US: GarminOS TVM component in CIQ API
CVE-2023-23303 (The `Toybox.Ant.GenericChannel.enableEncryption` API method in
CIQ API ...)
- TODO: check
+ NOT-FOR-US: CIQ API
CVE-2023-23302 (The `Toybox.GenericChannel.setDeviceConfig` API method in CIQ
API vers ...)
- TODO: check
+ NOT-FOR-US: CIQ API
CVE-2023-23301 (The `news` MonkeyC operation code in CIQ API version 1.0.0
through 4.1 ...)
- TODO: check
+ NOT-FOR-US: CIQ API
CVE-2023-23300 (The `Toybox.Cryptography.Cipher.initialize` API method in CIQ
API vers ...)
- TODO: check
+ NOT-FOR-US: CIQ API
CVE-2023-23299 (The permission system implemented and enforced by the GarminOS
TVM com ...)
- TODO: check
+ NOT-FOR-US: CIQ API
CVE-2023-23298 (The `Toybox.Graphics.BufferedBitmap.initialize` API method in
CIQ API ...)
- TODO: check
+ NOT-FOR-US: CIQ API
CVE-2023-23297
RESERVED
CVE-2023-23296 (Korenix JetWave 4200 Series 1.3.0 and JetWave 3200 Series
1.6.0 are vu ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51ae3929e4e6a12259152a7d4c0e16832723cc4f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51ae3929e4e6a12259152a7d4c0e16832723cc4f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
