[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Thu Apr 14 11:18:05 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
44ee472b by Neil Williams at 2022-04-14T11:17:33+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18521,27 +18521,27 @@ CVE-2022-22965 (A Spring MVC or Spring WebFlux application running on JDK 9+ may
 	NOTE: https://bugalert.org/content/notices/2022-03-30-spring.html
 	NOTE: https://tanzu.vmware.com/security/cve-2022-22965
 CVE-2022-22964 (VMware Horizon Client for Linux (prior to 22.x) contains a local privi ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22963 (In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported v ...)
 	NOT-FOR-US: Spring Cloud Function
 CVE-2022-22962 (VMware Horizon Client for Linux (prior to 22.x) contains a local privi ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22961 (VMware Workspace ONE Access, Identity Manager and vRealize Automation  ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22960 (VMware Workspace ONE Access, Identity Manager and vRealize Automation  ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22959 (VMware Workspace ONE Access, Identity Manager and vRealize Automation  ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22958 (VMware Workspace ONE Access, Identity Manager and vRealize Automation  ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22957 (VMware Workspace ONE Access, Identity Manager and vRealize Automation  ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22956 (VMware Workspace ONE Access has two authentication bypass vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22955 (VMware Workspace ONE Access has two authentication bypass vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22954 (VMware Workspace ONE Access and Identity Manager contain a remote code ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2022-22953
 	RESERVED
 CVE-2022-22952 (VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x prior to ...)
@@ -20103,19 +20103,19 @@ CVE-2022-22567 (Select Dell Client Commercial and Consumer platforms are vulnera
 CVE-2022-22566 (Select Dell Client Commercial and Consumer platforms contain a pre-boo ...)
 	NOT-FOR-US: Dell
 CVE-2022-22565 (Dell PowerScale OneFS, versions 9.0.0-9.3.0, contain an improper autho ...)
-	TODO: check
+	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22564
 	RESERVED
 CVE-2022-22563 (Dell EMC Powerscale OneFS 8.2.x - 9.2.x omit security-relevant informa ...)
 	NOT-FOR-US: EMC
 CVE-2022-22562 (Dell PowerScale OneFS, versions 8.2.0-9.3.0, contain a improper handli ...)
-	TODO: check
+	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22561 (Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contain an improper res ...)
-	TODO: check
+	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22560 (Dell EMC PowerScale OneFS 8.1.x - 9.1.x contain hard coded credentials ...)
 	NOT-FOR-US: EMC
 CVE-2022-22559 (Dell PowerScale OneFS, version 9.3.0, contains a use of a broken or ri ...)
-	TODO: check
+	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22558
 	RESERVED
 CVE-2022-22557
@@ -20133,9 +20133,9 @@ CVE-2022-22552 (Dell EMC AppSync versions 3.9 to 4.3 contain a clickjacking vuln
 CVE-2022-22551 (DELL EMC AppSync versions 3.9 to 4.3 use GET request method with sensi ...)
 	NOT-FOR-US: EMC
 CVE-2022-22550 (Dell PowerScale OneFS, versions 8.2.2 and above, contain a password di ...)
-	TODO: check
+	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22549 (Dell PowerScale OneFS, 8.2.x-9.3.x, contains a Improper Certificate Va ...)
-	TODO: check
+	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22548
 	RESERVED
 CVE-2022-22547 (Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44ee472bc48247faf6764261c56b5c4d9db4d8ca

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44ee472bc48247faf6764261c56b5c4d9db4d8ca
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220414/f23da9b1/attachment.htm>

More information about the debian-security-tracker-commits mailing list