[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) Thu, 05 Dec 2024 02:22:09 -0800


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
12a76b7a by Moritz Muehlenhoff at 2024-12-05T11:21:25+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,47 +1,47 @@
 CVE-2024-54675 (app/webroot/js/workflows-editor/workflows-editor.js in MISP 
through 2. ...)
-       TODO: check
+       NOT-FOR-US: MISP
 CVE-2024-54674 (app/View/GalaxyClusters/cluster_export_misp_galaxy.ctp in MISP 
through ...)
-       TODO: check
+       NOT-FOR-US: MISP
 CVE-2024-54221 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-54014 (Improper authorization in handler for custom URL scheme issue 
in 'Skyl ...)
-       TODO: check
+       NOT-FOR-US: 'Skylark' App for Android
 CVE-2024-53982 (ZOO-Project is a C-based WPS (Web Processing Service) 
implementation.  ...)
-       TODO: check
+       NOT-FOR-US: ZOO-Project
 CVE-2024-51210 (Firepad through 1.5.11 allows remote attackers, who have 
knowledge of  ...)
-       TODO: check
+       NOT-FOR-US: Firepad
 CVE-2024-50947 (An issue in kmqtt v0.2.7 allows attackers to cause a Denial of 
Service ...)
-       TODO: check
+       NOT-FOR-US: kmqtt
 CVE-2024-42195 (HCL DevOps Deploy / HCL Launch is vulnerable to HTML 
injection. This v ...)
-       TODO: check
+       NOT-FOR-US: HCL
 CVE-2024-39219 (An issue in Aginode GigaSwitch V5 before version 7.06G allows 
authenti ...)
-       TODO: check
+       NOT-FOR-US: Aginode GigaSwitch
 CVE-2024-38829 (A vulnerability in VMware Tanzu Spring LDAP allows data 
exposure for c ...)
        - libspring-java <unfixed> (unimportant)
        NOTE: https://spring.io/security/cve-2024-38829
        NOTE: Only supported for building applications shipped in Debian, see 
README.Debian.security
 CVE-2024-12188 (A vulnerability was found in 1000 Projects Library Management 
System 1 ...)
-       TODO: check
+       NOT-FOR-US: 1000 Projects Library Management System
 CVE-2024-12187 (A vulnerability was found in 1000 Projects Library Management 
System 1 ...)
-       TODO: check
+       NOT-FOR-US: 1000 Projects Library Management System
 CVE-2024-12186 (A vulnerability was found in code-projects Hotel Management 
System 1.0 ...)
-       TODO: check
+       NOT-FOR-US: code-projects Hotel Management System
 CVE-2024-12185 (A vulnerability has been found in code-projects Hotel 
Management Syste ...)
-       TODO: check
+       NOT-FOR-US: code-projects Hotel Management System
 CVE-2024-12183 (A vulnerability, which was classified as problematic, was 
found in Ded ...)
-       TODO: check
+       NOT-FOR-US: DedeCMS
 CVE-2024-12182 (A vulnerability, which was classified as problematic, has been 
found i ...)
-       TODO: check
+       NOT-FOR-US: DedeCMS
 CVE-2024-12181 (A vulnerability classified as problematic was found in DedeCMS 
5.7.116 ...)
-       TODO: check
+       NOT-FOR-US: DedeCMS
 CVE-2024-12180 (A vulnerability classified as problematic has been found in 
DedeCMS 5. ...)
-       TODO: check
+       NOT-FOR-US: DedeCMS
 CVE-2024-11429 (The Free Responsive Testimonials, Social Proof Reviews, and 
Customer R ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-10881 (The LUNA RADIO PLAYER plugin for WordPress is vulnerable to 
Stored Cro ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-10178 (The Gutentor \u2013 Gutenberg Blocks \u2013 Page Builder for 
Gutenberg ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-8962 (The WPBITS Addons For Elementor Page Builder plugin for 
WordPress is v ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-8894 (Out-of-bounds Writevulnerability was discovered in Open Design 
Allianc ...)
@@ -63,7 +63,7 @@ CVE-2024-54154 (In JetBrains YouTrack before 2024.3.51866 
system takeover was po
 CVE-2024-54153 (In JetBrains YouTrack before 2024.3.51866 unauthenticated 
database bac ...)
        NOT-FOR-US: JetBrains YouTrack
 CVE-2024-54134 (A publish-access account was compromised for 
`@solana/web3.js`, a Java ...)
-       TODO: check
+       NOT-FOR-US: @solana/web3.js
 CVE-2024-54132 (The GitHub CLI is GitHub\u2019s official command line tool. A 
security ...)
        - gh <unfixed>
        NOTE: https://github.com/cli/cli/security/advisories/GHSA-2m9h-r57g-45pj



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12a76b7a2cc5b64878b824c153c8a57ec8033d9f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12a76b7a2cc5b64878b824c153c8a57ec8033d9f
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] NFUs

Reply via email to