Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
59e36107 by Moritz Muehlenhoff at 2023-10-13T12:28:23+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,35 +1,35 @@
CVE-2023-5564 (Cross-site Scripting (XSS) - Stored in GitHub repository
froxlor/froxl ...)
- TODO: check
+ - froxlor <itp> (bug #581792)
CVE-2023-5563 (The SJA1000 CAN controller driver backend automatically attempt
to rec ...)
- TODO: check
+ NOT-FOR-US: Zephyr RTOS (unrelated to src:zephyr)
CVE-2023-5557 (A flaw was found in the tracker-miners package. A weakness in
the sand ...)
TODO: check
CVE-2023-4562 (Improper Authentication vulnerability in Mitsubishi Electric
Corporati ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2023-45511 (A memory leak in tsMuxer version git-2539d07 allows attackers
to cause ...)
- TODO: check
+ NOT-FOR-US: tsMuxer
CVE-2023-45510 (tsMuxer version git-2539d07 was discovered to contain an
alloc-dealloc ...)
- TODO: check
+ NOT-FOR-US: tsMuxer
CVE-2023-41263 (An issue was discovered in Plixer Scrutinizer before 19.3.1.
It expose ...)
- TODO: check
+ NOT-FOR-US: Plixer Scrutinizer
CVE-2023-41262 (An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer
Scrutinizer ...)
- TODO: check
+ NOT-FOR-US: Plixer Scrutinizer
CVE-2023-41261 (An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer
Scrutinizer ...)
- TODO: check
+ NOT-FOR-US: Plixer Scrutinizer
CVE-2023-38251 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2
(and earli ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2023-38250 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2
(and earli ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2023-38249 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2
(and earli ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2023-38221 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2
(and earli ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2023-38220 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2
(and earli ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2023-38219 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2
(and earli ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2023-38218 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2
(and earli ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2023-45365
NOT-FOR-US: MediaWiki extension Citoid
CVE-2023-45366
@@ -53,9 +53,9 @@ CVE-2023-5045 (Improper Neutralization of Special Elements
used in an SQL Comman
CVE-2023-45143 (Undici is an HTTP/1.1 client written from scratch for Node.js.
Prior t ...)
TODO: check
CVE-2023-45142 (OpenTelemetry-Go Contrib is a collection of third-party
packages for O ...)
- TODO: check
+ NOT-FOR-US: OpenTelemetry-Go Contrib
CVE-2023-45138 (Change Request is an pplication allowing users to request
changes on a ...)
- TODO: check
+ NOT-FOR-US: XWiki addon
CVE-2023-45133 (Babel is a compiler for writingJavaScript. In
`@babel/traverse` prior ...)
TODO: check
CVE-2023-45106 (Cross-Site Request Forgery (CSRF) vulnerability in Fedor
Urvanov, Aram ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59e36107faa679da863bec8fc5e22cb5a5de8879
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59e36107faa679da863bec8fc5e22cb5a5de8879
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
