[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Wed, 25 Dec 2024 12:42:14 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
f45b512d by Salvatore Bonaccorso at 2024-12-25T21:41:38+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,23 +1,23 @@
 CVE-2024-8950 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
-       TODO: check
+       NOT-FOR-US: Arne Informatics Piramit Automation
 CVE-2024-56431 (oc_huff_tree_unpack in huffdec.c in libtheora in Theora 
through 1.0 71 ...)
        TODO: check
 CVE-2024-56430 (OpenFHE through 1.2.3 has a NULL pointer dereference in 
BinFHEContext: ...)
-       TODO: check
+       NOT-FOR-US: OpenFHE
 CVE-2024-53291 (Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Exposure of 
Sensiti ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2024-52906 (IBM AIX7.2, 7.3, VIOS 3.1, and 4.1    could allow a 
non-privileged loc ...)
        NOT-FOR-US: IBM
 CVE-2024-52543 (Dell NativeEdge, version(s) 2.1.0.0, contain(s) a Creation of 
Temporar ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2024-52535 (Dell SupportAssist for Home PCs versions 4.6.1 and prior and 
Dell Supp ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2024-52534 (Dell ECS, version(s) prior to ECS 3.8.1.3, contain(s) an 
Authenticatio ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2024-52046 (The ObjectSerializationDecoder in Apache MINA uses Java\u2019s 
native  ...)
-       TODO: check
+       NOT-FOR-US: Apache MINA
 CVE-2024-47978 (Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Execution 
with Unne ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2024-47102 (IBM AIX7.2, 7.3, VIOS 3.1, and 4.1  could allow a 
non-privileged local ...)
        NOT-FOR-US: IBM
 CVE-2024-39727 (IBM Engineering Lifecycle Optimization - Engineering Insights 
7.0.2 an ...)
@@ -25,29 +25,29 @@ CVE-2024-39727 (IBM Engineering Lifecycle Optimization - 
Engineering Insights 7.
 CVE-2024-39725 (IBM Engineering Lifecycle Optimization - Engineering Insights 
7.0.2 an ...)
        NOT-FOR-US: IBM
 CVE-2024-1609 (In OPPOStore iOS App, there's a possible escalation of 
privilege due t ...)
-       TODO: check
+       NOT-FOR-US: OPPOStore iOS App
 CVE-2024-12926 (A vulnerability classified as critical was found in Codezips 
Project M ...)
-       TODO: check
+       NOT-FOR-US: Codezips Project Management System
 CVE-2024-12636 (The Privacy Policy Generator, Terms & Conditions Generator 
WordPress P ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-12428 (The WP Data Access \u2013 App, Table, Form and Chart Builder 
plugin pl ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-12413 (The MarketKing \u2014 Ultimate WooCommerce Multivendor 
Marketplace Sol ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-12335 (The Avada (Fusion) Builder plugin for WordPress is vulnerable 
to Infor ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-12272 (The WP Travel Engine \u2013 Elementor Widgets | Create Travel 
Booking  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-12190 (The Contact Form by Bit Form: Multi Step Form, Calculation 
Contact For ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-12032 (The Tourfic \u2013 Ultimate Hotel Booking, Travel Booking & 
Apartment  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-11281 (The WooCommerce Point of Sale plugin for WordPress is 
vulnerable to pr ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-10862 (The NEX-Forms \u2013 Ultimate Form Builder \u2013 Contact 
forms and mu ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-10858 (The Jetpack  WordPress plugin before 14.1 does not properly 
checks the ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2023-5117 (An issue was discovered in GitLab CE/EE affecting all versions 
before  ...)
        TODO: check
 CVE-2024-8721 (The Tracking Code Manager plugin for WordPress is vulnerable to 
Stored ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f45b512dae5c6d89b58cc470c47fb5bdd207c391

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f45b512dae5c6d89b58cc470c47fb5bdd207c391
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to