[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Tue Aug 2 12:01:42 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a6bf2df6 by Neil Williams at 2022-08-02T12:01:26+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18993,7 +18993,7 @@ CVE-2022-1563
 CVE-2022-1562 (The Enable SVG WordPress plugin before 1.4.0 does not sanitise uploade ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-1561 (Lura and KrakenD-CE versions older than v2.0.2 and KrakenD-EE versions ...)
-	TODO: check
+	NOT-FOR-US: Lura Project
 CVE-2022-1560 (The Amministrazione Aperta WordPress plugin before 3.8 does not valida ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-1559 (The Clipr WordPress plugin through 1.2.3 does not sanitise and escape  ...)
@@ -29676,45 +29676,45 @@ CVE-2022-26447
 CVE-2022-26446
 	RESERVED
 CVE-2022-26445 (In wifi driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26444 (In wifi driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26443 (In wifi driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26442 (In wifi driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26441 (In wifi driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26440 (In wifi driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26439 (In wifi driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26438 (In wifi driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26437 (In httpclient, there is a possible out of bounds write due to uninitia ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2022-26436 (In emi mpu, there is a possible out of bounds read due to a missing bo ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26435 (In mailbox, there is a possible out of bounds write due to type confus ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26434 (In mailbox, there is a possible out of bounds write due to a missing b ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26433 (In mailbox, there is a possible out of bounds write due to type confus ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26432 (In mailbox, there is a possible out of bounds write due to a missing b ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26431 (In mailbox, there is a possible out of bounds write due to a missing b ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26430 (In mailbox, there is a possible out of bounds write due to type confus ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26429 (In cta, there is a possible way to write permission usage records of a ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26428 (In video codec, there is a possible memory corruption due to a race co ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26427 (In camera isp, there is a possible out of bounds write due to a missin ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26426 (In camera isp, there is a possible out of bounds write due to a missin ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-26418
 	RESERVED
 CVE-2022-26416
@@ -30198,11 +30198,11 @@ CVE-2022-26312
 CVE-2022-26311 (Couchbase Operator 2.2.x before 2.2.3 exposes Sensitive Information to ...)
 	NOT-FOR-US: Couchbase Operator
 CVE-2022-26310 (Pandora FMS v7.0NG.760 and below allows an improper authorization in U ...)
-	TODO: check
+	NOT-FOR-US: Pandora FMS
 CVE-2022-26309 (Pandora FMS v7.0NG.759 allows Cross-Site Request Forgery in Bulk opera ...)
-	TODO: check
+	NOT-FOR-US: Pandora FMS
 CVE-2022-26308 (Pandora FMS v7.0NG.760 and below allows an improper access control in  ...)
-	TODO: check
+	NOT-FOR-US: Pandora FMS
 CVE-2022-26307 (LibreOffice supports the storage of passwords for web connections in t ...)
 	- libreoffice 1:7.3.3~rc1-2
 	[bullseye] - libreoffice <no-dsa> (Minor issue)
@@ -50152,15 +50152,15 @@ CVE-2021-44232 (SAF-T Framework Transaction SAFTN_G allows an attacker to exploi
 CVE-2021-44231 (Internally used text extraction reports allow an attacker to inject co ...)
 	NOT-FOR-US: SAP
 CVE-2022-21792 (In camera isp, there is a possible out of bounds write due to a missin ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21791 (In camera isp, there is a possible out of bounds read due to a missing ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21790 (In camera isp, there is a possible out of bounds read due to a missing ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21789 (In audio ipi, there is a possible memory corruption due to a race cond ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21788 (In scp, there is a possible undefined behavior due to incorrect error  ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21787 (In audio DSP, there is a possible out of bounds write due to a missing ...)
 	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21786 (In audio DSP, there is a possible memory corruption due to improper ca ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6bf2df649e15dacf5a57552b6bdb17d52ee0eee

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6bf2df649e15dacf5a57552b6bdb17d52ee0eee
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220802/0a9e913b/attachment.htm>

More information about the debian-security-tracker-commits mailing list