[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Aug 2 10:36:06 BST 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e70c37bb by Moritz Muehlenhoff at 2022-08-02T11:35:47+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3426,7 +3426,7 @@ CVE-2022-35921 (fof/byobu is a private discussions extension for Flarum forum. A
 CVE-2022-35920 (Sanic is an opensource python web server/framework. Affected versions  ...)
 	NOT-FOR-US: Sanic
 CVE-2022-35919 (MinIO is a High Performance Object Storage released under GNU Affero G ...)
-	TODO: check
+	NOT-FOR-US: MinIO
 CVE-2022-35918 (Streamlit is a data oriented application development framework for pyt ...)
 	NOT-FOR-US: Streamlit
 CVE-2022-35917 (Solana Pay is a protocol and set of reference implementations that ena ...)
@@ -6847,7 +6847,7 @@ CVE-2022-34568 (SDL v1.2 was discovered to contain a use-after-free via the XFre
 	NOTE: https://github.com/libsdl-org/SDL-1.2/issues/863
 	NOTE: https://github.com/libsdl-org/SDL-1.2/commit/d7e00208738a0bc6af302723fe64908ac35b777b
 CVE-2022-34567 (An issue in \Roaming\Mango\Plugins of University of Texas Multi-image  ...)
-	TODO: check
+	NOT-FOR-US: Mango
 CVE-2022-34566
 	RESERVED
 CVE-2022-34565
@@ -6921,7 +6921,7 @@ CVE-2022-34532
 CVE-2022-34531 (DedeCMS v5.7.95 was discovered to contain a remote code execution (RCE ...)
 	NOT-FOR-US: DedeCMS
 CVE-2022-34530 (An issue in the login and reset password functionality of Backdrop CMS ...)
-	TODO: check
+	NOT-FOR-US: Backdrop CMS
 CVE-2022-34529 (WASM3 v0.5.0 was discovered to contain a segmentation fault via the co ...)
 	NOT-FOR-US: WASM3
 CVE-2022-34528 (D-Link DSL-3782 v1.03 and below was discovered to contain a stack over ...)
@@ -15411,7 +15411,7 @@ CVE-2022-31323
 CVE-2022-31322
 	RESERVED
 CVE-2022-31321 (The foldername parameter in Bolt 5.1.7 was discovered to have incorrec ...)
-	TODO: check
+	NOT-FOR-US: Bolt CMS
 CVE-2022-31320
 	RESERVED
 CVE-2022-31319
@@ -15783,31 +15783,31 @@ CVE-2022-31199
 CVE-2022-1797 (A malformed Class 3 common industrial protocol message with a cached c ...)
 	NOT-FOR-US: Rockwell Automation
 CVE-2022-31198 (OpenZeppelin Contracts is a library for secure smart contract developm ...)
-	TODO: check
+	NOT-FOR-US: OpenZeppelin
 CVE-2022-31197
 	RESERVED
 CVE-2022-31196
 	RESERVED
 CVE-2022-31195 (DSpace open source software is a repository application which provides ...)
-	TODO: check
+	NOT-FOR-US: DSpace
 CVE-2022-31194 (DSpace open source software is a repository application which provides ...)
-	TODO: check
+	NOT-FOR-US: DSpace
 CVE-2022-31193 (DSpace open source software is a repository application which provides ...)
-	TODO: check
+	NOT-FOR-US: DSpace
 CVE-2022-31192 (DSpace open source software is a repository application which provides ...)
-	TODO: check
+	NOT-FOR-US: DSpace
 CVE-2022-31191 (DSpace open source software is a repository application which provides ...)
-	TODO: check
+	NOT-FOR-US: DSpace
 CVE-2022-31190 (DSpace open source software is a repository application which provides ...)
-	TODO: check
+	NOT-FOR-US: DSpace
 CVE-2022-31189 (DSpace open source software is a repository application which provides ...)
-	TODO: check
+	NOT-FOR-US: DSpace
 CVE-2022-31188 (CVAT is an opensource interactive video and image annotation tool for  ...)
 	TODO: check
 CVE-2022-31187
 	RESERVED
 CVE-2022-31186 (NextAuth.js is a complete open source authentication solution for Next ...)
-	TODO: check
+	NOT-FOR-US: NextAuth.js
 CVE-2022-31185 (mprweb is a hosting platform for the makedeb Package Repository. Email ...)
 	TODO: check
 CVE-2022-31184 (Discourse is the an open source discussion platform. In affected versi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e70c37bba462982886a4e34971bc5389c01848df

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e70c37bba462982886a4e34971bc5389c01848df
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220802/74fee4ed/attachment.htm>

More information about the debian-security-tracker-commits mailing list