[Git][security-tracker-team/security-tracker][master] Process some NFUs
Neil Williams (@codehelp)
codehelp at debian.org
Tue Aug 2 12:20:29 BST 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
508ebd2d by Neil Williams at 2022-08-02T12:20:14+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15819,9 +15819,9 @@ CVE-2022-31182 (Discourse is the an open source discussion platform. In affected
CVE-2022-31181 (PrestaShop is an Open Source e-commerce platform. In versions from 1.6 ...)
TODO: check
CVE-2022-31180 (Shescape is a simple shell escape package for JavaScript. Affected ver ...)
- TODO: check
+ NOT-FOR-US: Node shescape
CVE-2022-31179 (Shescape is a simple shell escape package for JavaScript. Versions pri ...)
- TODO: check
+ NOT-FOR-US: Node shescape
CVE-2022-31178 (eLabFTW is an electronic lab notebook manager for research teams. A vu ...)
TODO: check
CVE-2022-31177 (Flask-AppBuilder is an application development framework built on top ...)
@@ -15877,9 +15877,9 @@ CVE-2022-31156 (Gradle is a build tool. Dependency verification is a security fe
- gradle <not-affected> (Vulnerable node not yet uploaded; introduced in 6.2)
NOTE: https://github.com/gradle/gradle/security/advisories/GHSA-j6wc-xfg8-jx2j
CVE-2022-31155 (Sourcegraph is an opensource code search and navigation engine. In Sou ...)
- TODO: check
+ NOT-FOR-US: Sourcegraph
CVE-2022-31154 (Sourcegraph is an opensource code search and navigation engine. It is ...)
- TODO: check
+ NOT-FOR-US: Sourcegraph
CVE-2022-31153 (OpenZeppelin Contracts for Cairo is a library for contract development ...)
NOT-FOR-US: OpenZeppelin Contracts
CVE-2022-31152
@@ -27359,7 +27359,7 @@ CVE-2022-27257 (A PHP Local File Inclusion vulneraility in the default Redbasic
CVE-2022-27256 (A PHP Local File inclusion vulnerability in the Redbasic theme for Hub ...)
NOT-FOR-US: Redbasic theme for Hubzilla
CVE-2022-27255 (In Realtek eCos RSDK 1.5.7p1 and MSDK 4.9.4p1, the SIP ALG function th ...)
- TODO: check
+ NOT-FOR-US: Realtek eCos RSDK
CVE-2022-27254 (The remote keyless system on Honda Civic 2018 vehicles sends the same ...)
NOT-FOR-US: Honda
CVE-2022-27253
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/508ebd2d1c440eff52cbac2567d4854abb9d41dc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/508ebd2d1c440eff52cbac2567d4854abb9d41dc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220802/043aab0d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list