[Git][security-tracker-team/security-tracker][master] Process several NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Aug 29 09:15:02 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8f64b2a0 by Salvatore Bonaccorso at 2022-08-29T10:14:38+02:00
Process several NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2022-3019 (The forgot password token basically just makes us capable of taking ov ...)
-	TODO: check
+	NOT-FOR-US: ToolJet
 CVE-2222-XXXX [DoS vulnerability in inetutils-telnetd: NULL pointer dereference when sending the byte sequences]
 	- inetutils 2:2.3-5
 	[bullseye] - inetutils <no-dsa> (Minor issue)
@@ -818,9 +818,9 @@ CVE-2022-38513
 CVE-2022-38512
 	RESERVED
 CVE-2022-38511 (TOTOLINK A810R V5.9c.4050_B20190424 was discovered to contain a comman ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-38510 (Tenda_TX9pro V22.03.02.10 was discovered to contain a buffer overflow  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2022-38509
 	RESERVED
 CVE-2022-38508
@@ -5617,15 +5617,15 @@ CVE-2022-36710
 CVE-2022-36709
 	RESERVED
 CVE-2022-36708 (Library Management System v1.0 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: Library Management System
 CVE-2022-36707 (Library Management System v1.0 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: Library Management System
 CVE-2022-36706 (Ingredients Stock Management System v1.0 was discovered to contain a S ...)
-	TODO: check
+	NOT-FOR-US: Ingredients Stock Management System
 CVE-2022-36705 (Ingredients Stock Management System v1.0 was discovered to contain a S ...)
-	TODO: check
+	NOT-FOR-US: Ingredients Stock Management System
 CVE-2022-36704 (Library Management System v1.0 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: Library Management System
 CVE-2022-36703 (Ingredients Stock Management System v1.0 was discovered to contain a S ...)
 	NOT-FOR-US: Ingredients Stock Management System
 CVE-2022-36702
@@ -5801,19 +5801,19 @@ CVE-2022-36618
 CVE-2022-36617
 	RESERVED
 CVE-2022-36616 (TOTOLINK A810R V4.1.2cu.5182_B20201026 and V5.9c.4050_B20190424 was di ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-36615 (TOTOLINK A3000RU V4.1.2cu.5185_B20201128 was discovered to contain a h ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-36614 (TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a har ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-36613 (TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a har ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-36612 (TOTOLINK A950RG V4.1.2cu.5204_B20210112 was discovered to contain a ha ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-36611 (TOTOLINK A800R V4.1.2cu.5137_B20200730 was discovered to contain a har ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-36610 (TOTOLINK A720R V4.1.5cu.532_B20210610 was discovered to contain a hard ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-36609
 	RESERVED
 CVE-2022-36608
@@ -5887,9 +5887,9 @@ CVE-2022-36575
 CVE-2022-36574
 	RESERVED
 CVE-2022-36573 (A cross-site scripting (XSS) vulnerability in Pagekit CMS v1.0.18 allo ...)
-	TODO: check
+	NOT-FOR-US: Pagekit CMS
 CVE-2022-36572 (Sinsiu Sinsiu Enterprise Website System v1.1.1.0 was discovered to con ...)
-	TODO: check
+	NOT-FOR-US: Sinsiu Sinsiu Enterprise Website System
 CVE-2022-36571
 	RESERVED
 CVE-2022-36570
@@ -64829,17 +64829,17 @@ CVE-2021-41787
 CVE-2021-41786
 	RESERVED
 CVE-2021-41785 (Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPD ...)
-	TODO: check
+	NOT-FOR-US: Foxit
 CVE-2021-41784 (Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPD ...)
-	TODO: check
+	NOT-FOR-US: Foxit
 CVE-2021-41783 (Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPD ...)
-	TODO: check
+	NOT-FOR-US: Foxit
 CVE-2021-41782 (Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPD ...)
-	TODO: check
+	NOT-FOR-US: Foxit
 CVE-2021-41781 (Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPD ...)
-	TODO: check
+	NOT-FOR-US: Foxit
 CVE-2021-41780 (Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPD ...)
-	TODO: check
+	NOT-FOR-US: Foxit
 CVE-2021-41779
 	RESERVED
 CVE-2021-41778



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f64b2a04b3975014d38c55e10012b665d3b23f3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f64b2a04b3975014d38c55e10012b665d3b23f3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220829/3c338053/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list