[Git][security-tracker-team/security-tracker][master] automatic update

Sat Dec 17 20:14:05 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
32580201 by security tracker role at 2022-12-17T20:13:56+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,29 @@
+CVE-2022-47513
+	RESERVED
+CVE-2022-4591 (A vulnerability was found in mschaef toto up to 1.4.20. It has been de ...)
+	TODO: check
+CVE-2022-4590 (A vulnerability was found in mschaef toto up to 1.4.20. It has been cl ...)
+	TODO: check
+CVE-2022-4589 (A vulnerability has been found in cyface Terms and Conditions Module u ...)
+	TODO: check
+CVE-2022-4588 (A vulnerability, which was classified as problematic, was found in Bos ...)
+	TODO: check
+CVE-2022-4587 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2022-4586 (A vulnerability classified as problematic was found in Opencaching Deu ...)
+	TODO: check
+CVE-2022-4585 (A vulnerability classified as problematic has been found in Opencachin ...)
+	TODO: check
+CVE-2022-4584 (A vulnerability was found in Axiomatic Bento4. It has been rated as cr ...)
+	TODO: check
+CVE-2022-4583 (A vulnerability was found in jLEMS. It has been declared as critical.  ...)
+	TODO: check
+CVE-2022-4582 (A vulnerability was found in starter-public-edition-4 up to 4.6.10. It ...)
+	TODO: check
+CVE-2022-4581 (A vulnerability was found in 1j01 mind-map and classified as problemat ...)
+	TODO: check
+CVE-2021-4246 (A vulnerability was found in roxlukas LMeve and classified as critical ...)
+	TODO: check
 CVE-2023-21823
 	RESERVED
 CVE-2023-21822
@@ -15837,11 +15863,13 @@ CVE-2022-3533 (A vulnerability was found in Linux Kernel. It has been rated as p
 	[bullseye] - libbpf <not-affected> (Vulnerable code introduced later)
 	NOTE: Introduced by: https://github.com/libbpf/libbpf/commit/557499a13ede6ea86883d070af06621fe990572f (v0.8.0)
 	NOTE: Fixed by: https://github.com/libbpf/libbpf/commit/881a10980b7ded995da5d9cc1919992c36c9d2be
-CVE-2022-3532 (A vulnerability was found in Linux Kernel. It has been declared as pro ...)
+CVE-2022-3532
+	REJECTED
 	- linux <unfixed> (unimportant)
 	NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next.git/commit/?id=6e8280b958c5d7edc514cf347a800b23b7732b2b
 	NOTE: Issue only in selftest/bpf.
-CVE-2022-3531 (A vulnerability was found in Linux Kernel. It has been classified as p ...)
+CVE-2022-3531
+	REJECTED
 	- linux <unfixed> (unimportant)
 	NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next.git/commit/?id=6d2e21dc4db3933db65293552ecc1ede26febeca
 	NOTE: Issue only in selftest/bpf.
@@ -17368,8 +17396,8 @@ CVE-2022-42455
 	RESERVED
 CVE-2022-42454
 	RESERVED
-CVE-2022-42453
-	RESERVED
+CVE-2022-42453 (There are insufficient warnings when a Fixlet is imported by a user. T ...)
+	TODO: check
 CVE-2022-42452
 	RESERVED
 CVE-2022-42451
@@ -27169,8 +27197,8 @@ CVE-2022-38661 (HCL Workload Automation could allow a local user to overwrite ke
 	NOT-FOR-US: HCL
 CVE-2022-38660 (HCL XPages applications are susceptible to a Cross Site Request Forger ...)
 	NOT-FOR-US: HCL
-CVE-2022-38659
-	RESERVED
+CVE-2022-38659 (In specific scenarios, on Windows the operator credentials may be encr ...)
+	TODO: check
 CVE-2022-38658
 	RESERVED
 CVE-2022-38657



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/325802011f20bbcafbc3667903bb19253ebd3c40

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/325802011f20bbcafbc3667903bb19253ebd3c40
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221217/8999ef67/attachment-0001.htm>
