[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Sat, 07 Sep 2024 01:45:09 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
50dfd2af by Salvatore Bonaccorso at 2024-09-07T10:44:32+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
 CVE-2024-8521 (A vulnerability, which was classified as problematic, was found 
in Wav ...)
-       TODO: check
+       NOT-FOR-US: Wavelog
 CVE-2024-8439
        REJECTED
 CVE-2024-45771 (RapidCMS v1.3.1 was discovered to contain a SQL injection 
vulnerabilit ...)
-       TODO: check
+       NOT-FOR-US: RapidCMS
 CVE-2024-44845 (DrayTek Vigor3900 v1.5.1.6 was discovered to contain an 
authenticated  ...)
-       TODO: check
+       NOT-FOR-US: DrayTek Vigor3900
 CVE-2024-44844 (DrayTek Vigor3900 v1.5.1.6 was discovered to contain an 
authenticated  ...)
-       TODO: check
+       NOT-FOR-US: DrayTek Vigor3900
 CVE-2024-44839 (RapidCMS v1.3.1 was discovered to contain a SQL injection 
vulnerabilit ...)
-       TODO: check
+       NOT-FOR-US: RapidCMS
 CVE-2024-44838 (RapidCMS v1.3.1 was discovered to contain a SQL injection 
vulnerabilit ...)
-       TODO: check
+       NOT-FOR-US: RapidCMS
 CVE-2024-8443
        - opensc <unfixed>
        [bookworm] - opensc <no-dsa> (Minor issue)
@@ -21,7 +21,7 @@ CVE-2024-8517 (SPIP before 4.3.2, 4.2.16, and  4.1.18 is 
vulnerable to a command
        NOTE: 
https://blog.spip.net/Mise-a-jour-critique-de-securite-sortie-de-SPIP-4-3-2-SPIP-4-2-16-SPIP-4-1-18.html?lang=fr
        NOTE: 
https://thinkloveshare.com/hacking/spip_preauth_rce_2024_part_2_a_big_upload/
 CVE-2024-8509 (A vulnerability was found in Forklift Controller. There is no 
verifica ...)
-       TODO: check
+       NOT-FOR-US: Forklift Controller
 CVE-2024-8428 (The ForumWP \u2013 Forum & Discussion Board Plugin plugin for 
WordPres ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-8394 (When aborting the verification of an OTR chat session, an 
attacker cou ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50dfd2af7d9399ef75336407f6568bfccb5f3f5a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50dfd2af7d9399ef75336407f6568bfccb5f3f5a
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to