[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Dec 20 12:48:41 GMT 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7c243258 by Moritz Muehlenhoff at 2022-12-20T13:48:11+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -161,15 +161,15 @@ CVE-2022-47553
CVE-2022-47552
RESERVED
CVE-2022-47551 (Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read perm ...)
- TODO: check
+ NOT-FOR-US: apiman
CVE-2022-47550
RESERVED
CVE-2022-47549 (An unprotected memory-access operation in optee_os in TrustedFirmware ...)
- TODO: check
+ NOT-FOR-US: OP-TEE
CVE-2022-47548
RESERVED
CVE-2022-47547 (GossipSub 1.1, as used for Ethereum 2.0, allows a peer to maintain a p ...)
- TODO: check
+ NOT-FOR-US: GossipSub
CVE-2022-47546
RESERVED
CVE-2022-47545
@@ -181,9 +181,9 @@ CVE-2022-47543
CVE-2022-47542
RESERVED
CVE-2022-4615 (Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/op ...)
- TODO: check
+ NOT-FOR-US: OpenEMR
CVE-2022-4614 (Cross-site Scripting (XSS) - Stored in GitHub repository alagrede/znot ...)
- TODO: check
+ NOT-FOR-US: znote-app
CVE-2022-4613 (A vulnerability was found in Click Studios Passwordstate and Passwords ...)
NOT-FOR-US: Click Studios Passwordstate and Passwordstate Browser Extension Chrome
CVE-2022-4612 (A vulnerability has been found in Click Studios Passwordstate and Pass ...)
@@ -193,15 +193,15 @@ CVE-2022-4611 (A vulnerability, which was classified as problematic, was found i
CVE-2022-4610 (A vulnerability, which was classified as problematic, has been found i ...)
NOT-FOR-US: Click Studios Passwordstate and Passwordstate Browser Extension Chrome
CVE-2022-4609 (Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memo ...)
- TODO: check
+ NOT-FOR-US: usememos
CVE-2022-4608
RESERVED
CVE-2021-4262 (A vulnerability classified as critical was found in laravel-jqgrid. Af ...)
- TODO: check
+ NOT-FOR-US: laravel-jqgrid.
CVE-2021-4261 (A vulnerability classified as critical has been found in pacman-canvas ...)
- TODO: check
+ NOT-FOR-US: pacman-canvas
CVE-2021-4260 (A vulnerability was found in oils-js. It has been declared as critical ...)
- TODO: check
+ NOT-FOR-US: oils-js
CVE-2021-4259 (A vulnerability was found in phpRedisAdmin up to 1.17.3. It has been c ...)
NOT-FOR-US: phpRedisAdmin
CVE-2021-4258 (** DISPUTED ** A vulnerability was found in whohas. It has been rated ...)
@@ -209,9 +209,9 @@ CVE-2021-4258 (** DISPUTED ** A vulnerability was found in whohas. It has been r
CVE-2020-36619 (A vulnerability was found in multimon-ng. It has been rated as critica ...)
TODO: check
CVE-2020-36618 (A vulnerability classified as critical has been found in Furqan node-w ...)
- TODO: check
+ NOT-FOR-US: Node whois
CVE-2016-20018 (Knex Knex.js through 2.3.0 has a limited SQL injection vulnerability t ...)
- TODO: check
+ NOT-FOR-US: Knex
CVE-2022-47541
RESERVED
CVE-2022-47540
@@ -253,25 +253,25 @@ CVE-2022-47523
CVE-2022-4607 (A vulnerability was found in 3D City Database OGC Web Feature Service ...)
NOT-FOR-US: 3D City Database OGC Web Feature Service
CVE-2021-4257 (A vulnerability was found in ctrlo lenio. It has been declared as prob ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4256 (A vulnerability was found in ctrlo lenio. It has been classified as pr ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4255 (A vulnerability was found in ctrlo lenio and classified as problematic ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4254 (A vulnerability has been found in ctrlo lenio and classified as proble ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4253 (A vulnerability, which was classified as problematic, was found in ctr ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4252 (A vulnerability, which was classified as problematic, has been found i ...)
NOT-FOR-US: WP-Ban
CVE-2021-4251 (A vulnerability classified as problematic was found in as. This vulner ...)
- TODO: check
+ NOT-FOR-US: andrewsauder/as
CVE-2021-4250 (A vulnerability classified as problematic has been found in cgriego ac ...)
- TODO: check
+ NOT-FOR-US: ActiveAttr
CVE-2022-4606 (PHP Remote File Inclusion in GitHub repository flatpressblog/flatpress ...)
- TODO: check
+ NOT-FOR-US: flatpressblog
CVE-2022-4605 (Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog ...)
- TODO: check
+ NOT-FOR-US: flatpressblog
CVE-2022-4604 (A vulnerability classified as problematic was found in wp-english-wp-a ...)
NOT-FOR-US: WordPress plugin
CVE-2022-4603 (** DISPUTED ** A vulnerability classified as problematic has been foun ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c243258825f314096cc4d646ebb189743667dc2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c243258825f314096cc4d646ebb189743667dc2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221220/eff211ef/attachment.htm>
More information about the debian-security-tracker-commits
mailing list