[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Dec 29 08:33:00 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d2d21cbc by Salvatore Bonaccorso at 2022-12-29T09:32:11+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -74475,11 +74475,11 @@ CVE-2022-23543 (Silverware Games is a social network where people can play games
CVE-2022-23542 (OpenFGA is an authorization/permission engine built for developers and ...)
TODO: check
CVE-2022-23541 (jsonwebtoken is an implementation of JSON Web Tokens. Versions `<= ...)
- TODO: check
+ NOT-FOR-US: jsonwebtoken node module
CVE-2022-23540 (In versions `<=8.5.1` of `jsonwebtoken` library, lack of algorithm ...)
- TODO: check
+ NOT-FOR-US: jsonwebtoken node module
CVE-2022-23539 (Versions `<=8.5.1` of `jsonwebtoken` library could be misconfigured ...)
- TODO: check
+ NOT-FOR-US: jsonwebtoken node module
CVE-2022-23538
RESERVED
CVE-2022-23537 (PJSIP is a free and open source multimedia communication library writt ...)
@@ -74499,7 +74499,7 @@ CVE-2022-23531 (GuardDog is a CLI tool to identify malicious PyPI packages. Vers
CVE-2022-23530 (GuardDog is a CLI tool to identify malicious PyPI packages. Versions p ...)
TODO: check
CVE-2022-23529 (node-jsonwebtoken is a JsonWebToken implementation for node.js. For ve ...)
- TODO: check
+ NOT-FOR-US: jsonwebtoken node module
CVE-2022-23528
RESERVED
CVE-2022-23527 (mod_auth_openidc is an OpenID Certified™ authentication and auth ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2d21cbce5dcadbfeb0df7a9e3159585558fc8bc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2d21cbce5dcadbfeb0df7a9e3159585558fc8bc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221229/797380ab/attachment.htm>
More information about the debian-security-tracker-commits
mailing list