[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) Wed, 13 Dec 2023 00:19:23 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
795e6c1a by Salvatore Bonaccorso at 2023-12-13T09:18:45+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,43 +1,43 @@
 CVE-2023-6753 (Path Traversal in GitHub repository mlflow/mlflow prior to 
2.9.2.)
-       TODO: check
+       NOT-FOR-US: mlflow
 CVE-2023-50263 (Nautobot is a Network Source of Truth and Network Automation 
Platform  ...)
-       TODO: check
+       NOT-FOR-US: Nautobot
 CVE-2023-50252 (php-svg-lib is an SVG file parsing / rendering library. Prior 
to versi ...)
        TODO: check
 CVE-2023-50251 (php-svg-lib is an SVG file parsing / rendering library. Prior 
to versi ...)
        TODO: check
 CVE-2023-48791 (An improper neutralization of special elements used in a 
command ('Com ...)
-       TODO: check
+       NOT-FOR-US: FortiGuard
 CVE-2023-48782 (A improper neutralization of special elements used in an os 
command (' ...)
-       TODO: check
+       NOT-FOR-US: FortiGuard
 CVE-2023-48225 (Laf is a cloud development platform. Prior to version 
1.0.0-beta.13, t ...)
        TODO: check
 CVE-2023-47579 (Relyum RELY-PCIe 22.2.1 devices suffer from a system group 
misconfigur ...)
-       TODO: check
+       NOT-FOR-US: Relyum RELY-PCIe
 CVE-2023-47578 (Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices are 
susceptible to ...)
-       TODO: check
+       NOT-FOR-US: Relyum RELY-PCIe and RELY-REC
 CVE-2023-47577 (An issue discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 
23.1.0 all ...)
-       TODO: check
+       NOT-FOR-US: Relyum
 CVE-2023-47576 (An issue was discovered in Relyum RELY-PCIe 22.2.1 and 
RELY-REC 23.1.0 ...)
-       TODO: check
+       NOT-FOR-US: Relyum
 CVE-2023-47575 (An issue was discovered on Relyum RELY-PCIe 22.2.1 and 
RELY-REC 23.1.0 ...)
-       TODO: check
+       NOT-FOR-US: Relyum
 CVE-2023-47574 (An issue was discovered on Relyum RELY-PCIe 22.2.1 and 
RELY-REC 23.1.0 ...)
-       TODO: check
+       NOT-FOR-US: Relyum
 CVE-2023-47573 (An issue discovered in Relyum RELY-PCIe 22.2.1 devices. The 
authorizat ...)
-       TODO: check
+       NOT-FOR-US: Relyum
 CVE-2023-47536 (An improper access control vulnerability [CWE-284] in FortiOS 
version  ...)
-       TODO: check
+       NOT-FOR-US: FortiGuard
 CVE-2023-46713 (An improper output neutralization for logs in Fortinet 
FortiWeb 6.2.0  ...)
-       TODO: check
+       NOT-FOR-US: FortiGuard
 CVE-2023-46675 (An issue was discovered by Elastic whereby sensitive 
information may b ...)
        TODO: check
 CVE-2023-45864 (A race condition issue discovered in Samsung Mobile Processor 
Exynos 9 ...)
-       TODO: check
+       NOT-FOR-US: Samsung
 CVE-2023-45801 (Improper Authentication vulnerability in Nadatel DVR allows 
Informatio ...)
-       TODO: check
+       NOT-FOR-US: Nadatel
 CVE-2023-45800 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Hanbiro
 CVE-2023-45725 (Design document functions which receive a user http request 
object may ...)
        TODO: check
 CVE-2023-45587 (An improper neutralization of input during web page generation 
('cross ...)
@@ -67,13 +67,13 @@ CVE-2023-5379 (A flaw was found in Undertow. When an AJP 
request is sent that ex
 CVE-2023-49921
        - elasticsearch <removed>
 CVE-2023-6687 (An issue was discovered by Elastic whereby Elastic Agent would 
log a r ...)
-       TODO: check
+       NOT-FOR-US: Elastic whereby Elastic Agent
 CVE-2023-50247 (h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and 
HTTP/3. Th ...)
        TODO: check
 CVE-2023-49923 (An issue was discovered by Elastic whereby the Documents API 
of App Se ...)
-       TODO: check
+       NOT-FOR-US: Elastic whereby the Documents API of App Search
 CVE-2023-49922 (An issue was discovered by Elastic whereby Beats and Elastic 
Agent wou ...)
-       TODO: check
+       NOT-FOR-US: Elastic whereby Beats and Elastic Agent
 CVE-2023-49279 (Umbraco is an ASP.NET content management system (CMS). 
Starting in ver ...)
        NOT-FOR-US: Umbraco
 CVE-2023-49278 (Umbraco is an ASP.NET content management system (CMS). 
Starting in ver ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/795e6c1a27365042688bed8648b010df94608ac5

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/795e6c1a27365042688bed8648b010df94608ac5
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to