Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5b2677fb by Salvatore Bonaccorso at 2023-12-14T09:28:09+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -27,9 +27,9 @@ CVE-2023-50248 (CKAN is an open-source data management system
for powering data
CVE-2023-50246 (jq is a command-line JSON processor. Version 1.7 is vulnerable
to heap ...)
TODO: check
CVE-2023-49878 (IBM System Storage Virtualization Engine TS7700 3957-VEC,
3948-VED and ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-49877 (IBM System Storage Virtualization Engine TS7700 3957-VEC,
3948-VED and ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-49646 (Improper authentication in some Zoom clients before version
5.16.5 may ...)
TODO: check
CVE-2023-48702 (Jellyfin is a system for managing and streaming media. Prior
to versio ...)
@@ -47,13 +47,13 @@ CVE-2023-47620 (Scrypted is a home video integration and
automation platform. In
CVE-2023-47619 (Audiobookshelf is a self-hosted audiobook and podcast server.
In versi ...)
TODO: check
CVE-2023-45184 (IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3
through ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-45174 (IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local
user to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-45170 (IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged
local user ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-45166 (IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged
local user ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-44709 (PlutoSVG commit 336c02997277a1888e6ccbbbe674551a0582e5c4 and
before wa ...)
TODO: check
CVE-2023-43586 (Path traversal in Zoom Desktop Client for Windows, Zoom VDI
Client for ...)
@@ -63,7 +63,7 @@ CVE-2023-43585 (Improper access control in Zoom Mobile App
for iOS and Zoom SDKs
CVE-2023-43583 (Cryptographic issues Zoom Mobile App for Android, Zoom Mobile
App for ...)
TODO: check
CVE-2023-43042 (IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem and
IBM Stora ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-41720 (A vulnerability exists on all versions of Ivanti Connect
Secure below ...)
TODO: check
CVE-2023-41719 (A vulnerability exists on all versions of Ivanti Connect
Secure below ...)
@@ -76754,7 +76754,7 @@ CVE-2022-43845
CVE-2022-43844 (IBM Robotic Process Automation for Cloud Pak 20.12 through
21.0.3 is v ...)
NOT-FOR-US: IBM
CVE-2022-43843 (IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than
expected c ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2022-43842
RESERVED
CVE-2022-43841
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b2677fbc9a0d70c3653f50c47226a52ded7012a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b2677fbc9a0d70c3653f50c47226a52ded7012a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
