[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Apr 1 10:00:30 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
59a98305 by Salvatore Bonaccorso at 2022-04-01T11:00:07+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3477,9 +3477,9 @@ CVE-2022-27052 (FreeFtpd version 1.0.13 and below contains an unquoted service p
 CVE-2022-27051
 	RESERVED
 CVE-2022-27050 (BitComet Service for Windows before version 1.8.6 contains an unquoted ...)
-	TODO: check
+	NOT-FOR-US: BitComet Service for Windows
 CVE-2022-27049 (Raidrive before v2021.12.35 allows attackers to arbitrarily move log f ...)
-	TODO: check
+	NOT-FOR-US: Raidrive
 CVE-2022-27048
 	RESERVED
 CVE-2022-27047
@@ -4700,7 +4700,7 @@ CVE-2022-26548
 CVE-2022-26547
 	RESERVED
 CVE-2022-26546 (Hospital Management System v1.0 was discovered to lack an authorizatio ...)
-	TODO: check
+	NOT-FOR-US: Hospital Management System
 CVE-2022-26545
 	RESERVED
 CVE-2022-26544
@@ -8942,7 +8942,7 @@ CVE-2022-25018 (Pluxml v5.8.7 was discovered to allow attackers to execute arbit
 	- pluxml <unfixed> (bug #1008264)
 	NOTE: https://github.com/MoritzHuppert/CVE-2022-25018/blob/main/CVE-2022-25018.pdf
 CVE-2022-25017 (Hitron CHITA 7.2.2.0.3b6-CD devices contain a command injection vulner ...)
-	TODO: check
+	NOT-FOR-US: Hitron CHITA
 CVE-2022-25016 (Home Owners Collection Management System v1.0 was discovered to contai ...)
 	NOT-FOR-US: Home Owners Collection Management System
 CVE-2022-25015 (A stored cross-site scripting (XSS) vulnerability in Ice Hrm 30.0.0.OS ...)
@@ -9513,7 +9513,7 @@ CVE-2022-24798 (Internet Routing Registry daemon version 4 is an IRR database se
 CVE-2022-24797 (Pomerium is an identity-aware access proxy. In distributed service mod ...)
 	TODO: check
 CVE-2022-24796 (RaspberryMatic is a free and open-source operating system for running  ...)
-	TODO: check
+	NOT-FOR-US: RaspberryMatic
 CVE-2022-24795
 	RESERVED
 CVE-2022-24794 (Express OpenID Connect is an Express JS middleware implementing sign o ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59a9830516ed89bfa0d508cc05889e60f07e9bb5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59a9830516ed89bfa0d508cc05889e60f07e9bb5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220401/f4d09746/attachment.htm>

More information about the debian-security-tracker-commits mailing list