[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Dec 6 08:33:40 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
56e2be5d by Salvatore Bonaccorso at 2022-12-06T09:33:17+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -393,7 +393,7 @@ CVE-2022-46466
 CVE-2022-46465
 	RESERVED
 CVE-2022-46464 (ConcreteCMS v9.1.3 was discovered to be vulnerable to Xpath injection  ...)
-	TODO: check
+	NOT-FOR-US: ConcreteCMS
 CVE-2022-46463
 	RESERVED
 CVE-2022-46462
@@ -1303,7 +1303,7 @@ CVE-2022-4174 (Type confusion in V8 in Google Chrome prior to 108.0.5359.71 allo
 	- chromium 108.0.5359.71-1
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2022-4173 (A vulnerability within the malware removal functionality of Avast and  ...)
-	TODO: check
+	NOT-FOR-US: Avast and AVG Antivirus
 CVE-2022-4172 (An integer overflow and buffer overflow issues were found in the ACPI  ...)
 	- qemu <unfixed> (bug #1025123)
 	[bullseye] - qemu <not-affected> (Vulnerable code introduced later)
@@ -1519,7 +1519,7 @@ CVE-2022-46166
 CVE-2022-46165
 	RESERVED
 CVE-2022-46164 (NodeBB is an open source Node.js based forum software. Due to a plain  ...)
-	TODO: check
+	NOT-FOR-US: NodeBB
 CVE-2022-46163
 	RESERVED
 CVE-2022-46162 (discourse-bbcode is the official BBCode plugin for Discourse. Prior to ...)
@@ -1938,7 +1938,7 @@ CVE-2022-45992
 CVE-2022-45991
 	RESERVED
 CVE-2022-45990 (A cross-site scripting (XSS) vulnerability in the component /signup_sc ...)
-	TODO: check
+	NOT-FOR-US: Ecommerce-Website
 CVE-2022-45989
 	RESERVED
 CVE-2022-45988
@@ -2099,7 +2099,7 @@ CVE-2022-45914 (The ESL (Electronic Shelf Label) protocol, as implemented by (fo
 CVE-2022-45913
 	RESERVED
 CVE-2022-45912 (An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0.  ...)
-	TODO: check
+	NOT-FOR-US: Zimbra
 CVE-2022-45911
 	RESERVED
 CVE-2022-4145
@@ -4919,7 +4919,7 @@ CVE-2022-45022
 CVE-2022-45021
 	RESERVED
 CVE-2022-45020 (Rukovoditel v3.2.1 was discovered to contain a DOM-based cross-site sc ...)
-	TODO: check
+	NOT-FOR-US: Rukovoditel
 CVE-2022-45019 (SLiMS 9 Bulian v9.5.0 was discovered to contain a SQL injection vulner ...)
 	TODO: check
 CVE-2022-45018



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/56e2be5d64a5ae90ff68e550bbb6fc55c39b7a5b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/56e2be5d64a5ae90ff68e550bbb6fc55c39b7a5b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221206/79a41dc2/attachment.htm>

More information about the debian-security-tracker-commits mailing list