[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed, 27 Sep 2023 23:26:25 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
b1ac19b8 by Salvatore Bonaccorso at 2023-09-28T08:25:39+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,5 @@
+CVE-2023-5236
+       NOT-FOR-US: Infinispan
 CVE-2023-5223 (A vulnerability, which was classified as critical, has been 
found in H ...)
        NOT-FOR-US: HimitZH HOJ
 CVE-2023-5222 (A vulnerability classified as critical was found in Viessmann 
Vitogate ...)
@@ -17,10 +19,16 @@ CVE-2023-5184 (Two potential signed to unsigned conversion 
errors and buffer ove
        NOT-FOR-US: Zephyr RTOS (unrelated to src:zephyr)
 CVE-2023-4523 (Real Time Automation 460 Series products with versions prior to 
v8.9.8 ...)
        NOT-FOR-US: Real Time Automation 460 Series products
+CVE-2023-4066
+       NOT-FOR-US: Red Hat AMQ Broker
 CVE-2023-4129 (Dell Data Protection Central, version 19.9, contains an 
Inadequate Enc ...)
        NOT-FOR-US: Dell
 CVE-2023-4003 (One Identity Password Manager version 5.9.7.1 -An 
unauthenticated atta ...)
        NOT-FOR-US: One Identity Password Manager
+CVE-2023-2585
+       NOT-FOR-US: Keycloak
+CVE-2023-2422
+       NOT-FOR-US: Keycloak
 CVE-2023-44207 (Stored cross-site scripting (XSS) vulnerability in protection 
plan nam ...)
        NOT-FOR-US: Acronis
 CVE-2023-44206 (Sensitive information disclosure and manipulation due to 
improper auth ...)
@@ -441,7 +449,7 @@ CVE-2023-4262 (Possible buffer overflow in Zephyr mgmt 
subsystem when asserts ar
 CVE-2023-4260 (Potential off-by-one buffer overflow vulnerability in the 
Zephyr fuse  ...)
        NOT-FOR-US: Zephyr RTOS (unrelated to src:zephyr)
 CVE-2023-4065 (A flaw was found in Red Hat AMQ Broker Operator, where it 
displayed a  ...)
-       TODO: check
+       NOT-FOR-US: Red Hat AMQ Broker
 CVE-2023-44172 (SeaCMS V12.9 was discovered to contain an arbitrary file write 
vulnera ...)
        NOT-FOR-US: SeaCMS
 CVE-2023-44171 (SeaCMS V12.9 was discovered to contain an arbitrary file write 
vulnera ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1ac19b80b672e86cdf432ddfefba53b64e298da

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1ac19b80b672e86cdf432ddfefba53b64e298da
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to