Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
55ec2434 by Salvatore Bonaccorso at 2023-12-13T09:36:22+01:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -41,23 +41,23 @@ CVE-2023-45800 (Improper Neutralization of Special Elements
used in an SQL Comma
CVE-2023-45725 (Design document functions which receive a user http request
object may ...)
TODO: check
CVE-2023-45587 (An improper neutralization of input during web page generation
('cross ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-43122 (Samsung Mobile Processor and Wearable Processor (Exynos 980,
850, 1080 ...)
- TODO: check
+ NOT-FOR-US: Samsung
CVE-2023-42483 (A TOCTOU race condition in Samsung Mobile Processor Exynos
9820, Exyno ...)
- TODO: check
+ NOT-FOR-US: Samsung
CVE-2023-41844 (A improper neutralization of input during web page generation
('cross- ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-41678 (A double free in Fortinet FortiOS versions 7.0.0 through
7.0.5, FortiP ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-41673 (An improper authorization vulnerability [CWE-285] in Fortinet
FortiADC ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-40716 (An improper neutralization of special elements used in an OS
command v ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-3517 (Hitachi Vantara Pentaho Data Integration & Analytics versions
before 9 ...)
- TODO: check
+ NOT-FOR-US: Hitachi Vantara Pentaho Data Integration & Analytics
CVE-2023-36639 (A use of externally-controlled format string in Fortinet
FortiProxy ve ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2023-6710 (A flaw was found in the mod_proxy_cluster in the Apache server.
This i ...)
- libapache2-mod-cluster <itp> (bug #731410)
CVE-2023-5379 (A flaw was found in Undertow. When an AJP request is sent that
exceeds ...)
@@ -122522,7 +122522,7 @@ CVE-2022-27490 (A exposure of sensitive information
to an unauthorized actor in
CVE-2022-27489 (A improper neutralization of special elements used in an os
command (' ...)
NOT-FOR-US: Fortinet
CVE-2022-27488 (A cross-site request forgery (CSRF) in Fortinet
FortiVoiceEnterprise v ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2022-27487 (A improper privilege management in Fortinet FortiSandbox
version 4.2.0 ...)
NOT-FOR-US: Fortinet
CVE-2022-27486
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55ec243473a55dbb459624128f15505590febbd9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55ec243473a55dbb459624128f15505590febbd9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
