[Git][security-tracker-team/security-tracker][master] Process HarmonyOS NFUs

Neil Williams (@codehelp) codehelp at debian.org
Wed Apr 13 10:25:27 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
06c2c14b by Neil Williams at 2022-04-13T10:25:00+01:00
Process HarmonyOS NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3467,11 +3467,11 @@ CVE-2022-1099 (Adding a very large number of tags to a runner in GitLab CE/EE af
 CVE-2022-1098 (Delta Electronics DIAEnergie (all versions prior to 1.8.02.004) are vu ...)
 	NOT-FOR-US: Delta Electronics DIAEnergie
 CVE-2021-46742 (The multi-window module has a vulnerability of unauthorized insertion  ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2021-46741
 	RESERVED
 CVE-2021-46740 (The device authentication service module has a defect vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2022-27887 (Maccms v10 was discovered to contain a reflected cross-site scripting  ...)
 	NOT-FOR-US: Maccms
 CVE-2022-27886 (Maccms v10 was discovered to contain a reflected cross-site scripting  ...)
@@ -22632,17 +22632,17 @@ CVE-2022-22260
 CVE-2022-22259
 	RESERVED
 CVE-2022-22258 (The Wi-Fi module has an event notification vulnerability.Successful ex ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2022-22257 (The customization framework has a vulnerability of improper permission ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2022-22256 (The DFX module has an access control vulnerability.Successful exploita ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2022-22255 (The application framework has a common DoS vulnerability.Successful ex ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2022-22254 (A permission bypass vulnerability exists when the NFC CAs access the T ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2022-22253 (The DFX module has a vulnerability of improper validation of integrity ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2022-22252
 	RESERVED
 CVE-2022-22251
@@ -41238,7 +41238,7 @@ CVE-2021-40067 (The access controls on the Mobility read-write API improperly va
 CVE-2021-40066 (The access controls on the Mobility read-only API improperly validate  ...)
 	NOT-FOR-US: Mobility
 CVE-2021-40065 (The communication module has a service logic error vulnerability.Succe ...)
-	TODO: check
+	NOT-FOR-US: Harmony OS
 CVE-2021-40064 (There is a heap-based buffer overflow vulnerability in system componen ...)
 	NOT-FOR-US: Huawei
 CVE-2021-40063 (There is an improper access control vulnerability in the video module. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06c2c14bc95b8ab12a7af7fed26cac17a3d114b6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06c2c14bc95b8ab12a7af7fed26cac17a3d114b6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220413/a54c6d67/attachment.htm>

More information about the debian-security-tracker-commits mailing list