[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Apr 21 10:19:12 BST 2022


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3fbb4bbb by Neil Williams at 2022-04-21T10:18:44+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12855,7 +12855,7 @@ CVE-2022-24847 (GeoServer is an open source software server written in Java that
 CVE-2022-24846 (GeoWebCache is a tile caching server implemented in Java. The GeoWebCa ...)
 	TODO: check
 CVE-2022-24845 (Vyper is a pythonic Smart Contract Language for the ethereum virtual m ...)
-	TODO: check
+	NOT-FOR-US: Vyper
 CVE-2022-24844 (Gin-vue-admin is a backstage management system based on vue and gin, w ...)
 	NOT-FOR-US: Gin-vue-admin
 CVE-2022-24843 (Gin-vue-admin is a backstage management system based on vue and gin, w ...)
@@ -12863,7 +12863,7 @@ CVE-2022-24843 (Gin-vue-admin is a backstage management system based on vue and
 CVE-2022-24842 (MinIO is a High Performance Object Storage released under GNU Affero G ...)
 	NOT-FOR-US: MinIO
 CVE-2022-24841 (fleetdm/fleet is an open source device management, built on osquery. A ...)
-	TODO: check
+	NOT-FOR-US: Fleet
 CVE-2022-24840
 	RESERVED
 CVE-2022-24839 (org.cyberneko.html is an html parser written in Java. The fork of `org ...)
@@ -12873,7 +12873,7 @@ CVE-2022-24839 (org.cyberneko.html is an html parser written in Java. The fork o
 	NOTE: https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv
 	NOTE: https://github.com/sparklemotion/nekohtml/commit/a800fce3b079def130ed42a408ff1d09f89e773d
 CVE-2022-24838 (Nextcloud Calendar is a calendar application for the nextcloud framewo ...)
-	TODO: check
+	NOT-FOR-US: Nextcloud Calendar
 CVE-2022-24837 (HedgeDoc is an open-source, web-based, self-hosted, collaborative mark ...)
 	NOT-FOR-US: HedgeDoc
 CVE-2022-24836 (Nokogiri is an open source XML and HTML library for Ruby. Nokogiri `&l ...)
@@ -12885,7 +12885,7 @@ CVE-2022-24835
 CVE-2022-24834
 	RESERVED
 CVE-2022-24833 (PrivateBin is minimalist, open source online pastebin clone where the  ...)
-	TODO: check
+	NOT-FOR-US: PrivateBin
 CVE-2022-24832 (GoCD is an open source a continuous delivery server. The bundled gocd- ...)
 	NOT-FOR-US: GoCD
 CVE-2022-24831
@@ -12893,7 +12893,7 @@ CVE-2022-24831
 CVE-2022-24830
 	RESERVED
 CVE-2022-24829 (Garden is an automation platform for Kubernetes development and testin ...)
-	TODO: check
+	NOT-FOR-US: Garden
 CVE-2022-24828 (Composer is a dependency manager for the PHP programming language. Int ...)
 	- composer <unfixed> (bug #1009960)
 	NOTE: https://github.com/composer/composer/commit/2c40c53637c5c7e43fff7c09d3d324d632734709 (2.2.12)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fbb4bbba45e54cb45959e20f54abf9325482723

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fbb4bbba45e54cb45959e20f54abf9325482723
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220421/08a9cf0c/attachment-0001.htm>
