Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2403db6b by Salvatore Bonaccorso at 2023-10-22T13:51:07+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,19 +1,19 @@
CVE-2023-46301 (iTerm2 before 3.4.20 allow (potentially remote) code execution
because ...)
- TODO: check
+ NOT-FOR-US: iTerm2
CVE-2023-46300 (iTerm2 before 3.4.20 allow (potentially remote) code execution
because ...)
- TODO: check
+ NOT-FOR-US: iTerm2
CVE-2023-46298 (Next.js before 13.4.20-canary.13 lacks a cache-control header
and thus ...)
TODO: check
CVE-2023-46078 (Cross-Site Request Forgery (CSRF) vulnerability in PluginEver
WC Seria ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-46067 (Cross-Site Request Forgery (CSRF) vulnerability in Qwerty23
Rocket Fon ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-38735 (IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 could allow
a remote ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-38276 (IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes
sensitive in ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-38275 (IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes
sensitive in ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-5349 [memory leak]
- ruby-rmagick 5.3.0-1
NOTE: https://github.com/rmagick/rmagick/pull/1406
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2403db6b724dd0fa1535398d59140e45b7bf09bd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2403db6b724dd0fa1535398d59140e45b7bf09bd
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
