[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Thu Apr 14 11:56:34 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
05d6be37 by Neil Williams at 2022-04-14T11:56:05+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12105,7 +12105,7 @@ CVE-2022-24769 (Moby is an open-source project created by Docker to enable and a
 CVE-2022-24768 (Argo CD is a declarative, GitOps continuous delivery tool for Kubernet ...)
 	NOT-FOR-US: Argo CD
 CVE-2022-24767 (Git for Windows is a fork of Git containing Windows-specific patches.  ...)
-	TODO: check
+	NOT-FOR-US: Git-for-Windows (Git fork containing Windows-specific patches)
 CVE-2022-24766 (mitmproxy is an interactive, SSL/TLS-capable intercepting proxy. In mi ...)
 	- mitmproxy <unfixed> (bug #1008948)
 	[bullseye] - mitmproxy <no-dsa> (Minor issue)
@@ -12448,15 +12448,15 @@ CVE-2022-24673
 CVE-2022-24672
 	RESERVED
 CVE-2022-24383 (The affected product is vulnerable to an out-of-bounds read, which may ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2022-21228 (The affected product is vulnerable to a stack-based buffer overflow, w ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2022-21214 (The affected product is vulnerable to a heap-based buffer overflow, wh ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2022-21202 (The affected product is vulnerable to an out-of-bounds read, which may ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2022-21168 (The affected product is vulnerable due to an invalid pointer initializ ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2022-24671 (A link following privilege escalation vulnerability in Trend Micro Ant ...)
 	NOT-FOR-US: Trend Micro
 CVE-2022-24670
@@ -13104,11 +13104,11 @@ CVE-2022-24415 (Dell BIOS contains an improper input validation vulnerability. A
 CVE-2022-24414
 	RESERVED
 CVE-2022-24413 (Dell PowerScale OneFS, versions 8.2.2-9.3.x, contain a time-of-check-t ...)
-	TODO: check
+	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-24412 (Dell EMC PowerScale OneFS 8.2.x - 9.3.0.x contain an improper handling ...)
 	NOT-FOR-US: EMC
 CVE-2022-24411 (Dell PowerScale OneFS 8.2.2 and above contain an elevation of privileg ...)
-	TODO: check
+	NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-24410
 	RESERVED
 CVE-2022-24409 (Only customers with active BSAFE maintenance contracts can receive det ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/05d6be37aff47eb3ea4bc4733c766bab604f3ee2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/05d6be37aff47eb3ea4bc4733c766bab604f3ee2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220414/ffe0d997/attachment.htm>

More information about the debian-security-tracker-commits mailing list