Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
844320ad by Salvatore Bonaccorso at 2023-07-28T22:22:12+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2,15 +2,15 @@ CVE-2023-3598 (Out of bounds read and write in ANGLE in
Google Chrome prior to 1
- chromium 114.0.5735.90-1
[buster] - chromium <end-of-life> (see DSA 5046)
CVE-2023-3488 (Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0
and ear ...)
- TODO: check
+ NOT-FOR-US: GBL parser in Silicon Labs GSDK
CVE-2023-39190
REJECTED
CVE-2023-39023 (university compass v2.2.0 and below was discovered to contain
a code i ...)
- TODO: check
+ NOT-FOR-US: university compass
CVE-2023-39022 (oscore v2.2.6 and below was discovered to contain a code
injection vul ...)
TODO: check
CVE-2023-39021 (wix-embedded-mysql v4.6.1 and below was discovered to contain
a code i ...)
- TODO: check
+ NOT-FOR-US: wix-embedded-mysql
CVE-2023-39020 (stanford-parser v3.9.2 and below was discovered to contain a
code inje ...)
TODO: check
CVE-2023-39018 (FFmpeg 0.7.0 and below was discovered to contain a code
injection vuln ...)
@@ -28,31 +28,31 @@ CVE-2023-39010 (BoofCV 0.42 was discovered to contain a
code injection vulnerabi
CVE-2023-38992 (jeecg-boot v3.5.1 was discovered to contain a SQL injection
vulnerabil ...)
TODO: check
CVE-2023-38685 (Discourse is an open source discussion platform. Prior to
version 3.0. ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2023-38684 (Discourse is an open source discussion platform. Prior to
version 3.0. ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2023-38498 (Discourse is an open source discussion platform. Prior to
version 3.0. ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2023-37906 (Discourse is an open source discussion platform. Prior to
version 3.0. ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2023-37904 (Discourse is an open source discussion platform. Prior to
version 3.0. ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2023-37754 (PowerJob v4.3.3 was discovered to contain a remote command
execution ( ...)
- TODO: check
+ NOT-FOR-US: PowerJob
CVE-2023-37467 (Discourse is an open source discussion platform. Prior to
version 3.1. ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2023-31937 (Sql injection vulnerability found in Rail Pass Management
System v.1.0 ...)
- TODO: check
+ NOT-FOR-US: Rail Pass Management System
CVE-2023-31936 (Sql injection vulnerability found in Rail Pass Management
System v.1.0 ...)
- TODO: check
+ NOT-FOR-US: Rail Pass Management System
CVE-2023-31935 (Cross Site Scripting vulnerability found in Rail Pass
Management Syste ...)
- TODO: check
+ NOT-FOR-US: Rail Pass Management System
CVE-2023-31934 (Cross Site Scripting vulnerability found in Rail Pass
Management Syste ...)
- TODO: check
+ NOT-FOR-US: Rail Pass Management System
CVE-2023-31933 (Sql injection vulnerability found in Rail Pass Management
System v.1.0 ...)
- TODO: check
+ NOT-FOR-US: Rail Pass Management System
CVE-2023-31932 (Sql injection vulnerability found in Rail Pass Management
System v.1.0 ...)
- TODO: check
+ NOT-FOR-US: Rail Pass Management System
CVE-2023-2685 (A vulnerability was found in AO-OPC server versions mentioned
above. A ...)
TODO: check
CVE-2023-3990 (A vulnerability classified as problematic has been found in
Mingsoft M ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/844320adc0fc9b58bd8db1f80ca6fb6024a7792d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/844320adc0fc9b58bd8db1f80ca6fb6024a7792d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
