Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6b6c1d45 by Salvatore Bonaccorso at 2023-06-28T23:03:10+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
CVE-2023-3450 (A vulnerability was found in Ruijie RG-BCR860 2.5.13 and
classified as ...)
- TODO: check
+ NOT-FOR-US: Ruijie RG-BCR860
CVE-2023-3449 (A vulnerability has been found in IBOS OA 4.5.5 and classified
as crit ...)
- TODO: check
+ NOT-FOR-US: IBOS OA
CVE-2023-3445 (Cross-site Scripting (XSS) - Stored in GitHub repository
spinacms/spin ...)
- TODO: check
+ NOT-FOR-US: Spina CMS
CVE-2023-3390 (A use-after-free vulnerability was found in the Linux kernel's
netfilt ...)
- linux <unfixed>
NOTE:
https://git.kernel.org/linus/1240eb93f0616b21c675416516ff3d74798fdc97 (6.4-rc7)
@@ -21,31 +21,31 @@ CVE-2023-3034 (Reflected XSS affects the \u2018mode\u2019
parameter in the /admi
CVE-2023-36467 (AWS data.all is an open source development framework to help
users bui ...)
TODO: check
CVE-2023-34937 (A stack overflow in the UpdateSnat function of H3C Magic
B1STV100R012 ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34936 (A stack overflow in the UpdateMacClone function of H3C Magic
B1STV100R ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34935 (A stack overflow in the AddWlanMacList function of H3C Magic
B1STV100R ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34934 (A stack overflow in the Edit_BasicSSID_5G function of H3C
Magic B1STV1 ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34933 (A stack overflow in the UpdateWanParams function of H3C Magic
B1STV100 ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34932 (A stack overflow in the UpdateWanMode function of H3C Magic
B1STV100R0 ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34931 (A stack overflow in the EditWlanMacList function of H3C Magic
B1STV100 ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34930 (A stack overflow in the EditMacList function of H3C Magic
B1STV100R012 ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34929 (A stack overflow in the AddMacList function of H3C Magic
B1STV100R012 ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34928 (A stack overflow in the Edit_BasicSSID function of H3C Magic
B1STV100R ...)
- TODO: check
+ NOT-FOR-US: H3C
CVE-2023-34761 (An unauthenticated attacker within BLE proximity can remotely
connect ...)
TODO: check
CVE-2023-33592 (Lost and Found Information System v1.0 was discovered to
contain a SQL ...)
- TODO: check
+ NOT-FOR-US: Lost and Found Information System
CVE-2023-33570 (Bagisto v1.5.1 is vulnerable to Server-Side Template Injection
(SSTI).)
- TODO: check
+ NOT-FOR-US: Bagisto
CVE-2023-2625 (A vulnerability exists that can be exploited by an
authenticated clien ...)
TODO: check
CVE-2023-3436 (Xpdf 4.04 will deadlock on a PDF object stream whose "Length"
field is ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6b6c1d4504054961043ad9f8c9fd301cc500839f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6b6c1d4504054961043ad9f8c9fd301cc500839f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
