[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Thu Apr 21 10:41:43 BST 2022



Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9c8d9d00 by Neil Williams at 2022-04-21T10:41:10+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12790,11 +12790,11 @@ CVE-2022-24876
 CVE-2022-24875
 	RESERVED
 CVE-2022-24874 (acs commons is an open source framework for AEM projects. ACS Commons  ...)
-	TODO: check
+	NOT-FOR-US: Adobe acs-aem-commons
 CVE-2022-24873
 	RESERVED
 CVE-2022-24872 (Shopware is an open commerce platform based on Symfony Framework and V ...)
-	TODO: check
+	NOT-FOR-US: Shopware
 CVE-2022-24871 (Shopware is an open commerce platform based on Symfony Framework and V ...)
 	NOT-FOR-US: Shopware
 CVE-2022-24870
@@ -12808,11 +12808,11 @@ CVE-2022-24867
 CVE-2022-24866
 	RESERVED
 CVE-2022-24865 (HumHub is an Open Source Enterprise Social Network. In affected versio ...)
-	TODO: check
+	NOT-FOR-US: HumHub
 CVE-2022-24864 (Origin Protocol is a blockchain based project. The Origin Protocol pro ...)
-	TODO: check
+	NOT-FOR-US: Origin Protocol
 CVE-2022-24863 (http-swagger is an open source wrapper to automatically generate RESTf ...)
-	TODO: check
+	NOT-FOR-US: http-swagger
 CVE-2022-24862 (Databasir is a team-oriented relational database model document manage ...)
 	NOT-FOR-US: Databasir
 CVE-2022-24861 (Databasir is a team-oriented relational database model document manage ...)
@@ -12825,9 +12825,9 @@ CVE-2022-24859 (PyPDF2 is an open source python PDF library capable of splitting
 	NOTE: https://github.com/py-pdf/PyPDF2/issues/329
 	NOTE: https://github.com/py-pdf/PyPDF2/pull/740
 CVE-2022-24858 (next-auth v3 users before version 3.29.2 are impacted. next-auth versi ...)
-	TODO: check
+	NOT-FOR-US: NextAuth.js
 CVE-2022-24857 (django-mfa3 is a library that implements multi factor authentication f ...)
-	TODO: check
+	NOT-FOR-US: django-mfa3
 CVE-2022-24856
 	RESERVED
 CVE-2022-24855 (Metabase is an open source business intelligence and analytics applica ...)
@@ -12851,9 +12851,9 @@ CVE-2022-24849 (DisCatSharp is a Discord API wrapper for .NET. Users of versions
 CVE-2022-24848
 	RESERVED
 CVE-2022-24847 (GeoServer is an open source software server written in Java that allow ...)
-	TODO: check
+	NOT-FOR-US: geoserver
 CVE-2022-24846 (GeoWebCache is a tile caching server implemented in Java. The GeoWebCa ...)
-	TODO: check
+	NOT-FOR-US: geowebcache
 CVE-2022-24845 (Vyper is a pythonic Smart Contract Language for the ethereum virtual m ...)
 	NOT-FOR-US: Vyper
 CVE-2022-24844 (Gin-vue-admin is a backstage management system based on vue and gin, w ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c8d9d0054f20a0d5a9ba5fd01f3a7589b565192

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c8d9d0054f20a0d5a9ba5fd01f3a7589b565192
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220421/896e5c27/attachment.htm>


More information about the debian-security-tracker-commits mailing list