[Git][security-tracker-team/security-tracker][master] Process some NFUs

Fri Dec 30 20:17:03 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0dd69d71 by Salvatore Bonaccorso at 2022-12-30T21:16:35+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,27 +1,27 @@
 CVE-2022-4863 (Improper Handling of Insufficient Permissions or Privileges in GitHub  ...)
-	TODO: check
+	NOT-FOR-US: usememos
 CVE-2022-4862
 	RESERVED
 CVE-2022-4861 (Incorrect implementation in authentication protocol in M-Files Client  ...)
-	TODO: check
+	NOT-FOR-US: M-Files
 CVE-2022-4860 (A vulnerability was found in KBase Metrics. It has been classified as  ...)
-	TODO: check
+	NOT-FOR-US: KBase Metrics
 CVE-2022-4859 (A vulnerability, which was classified as problematic, has been found i ...)
 	TODO: check
 CVE-2022-4858 (Insertion of Sensitive Information into Log Files in M-Files Server be ...)
-	TODO: check
+	NOT-FOR-US: M-Files
 CVE-2022-4857 (A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and ...)
-	TODO: check
+	NOT-FOR-US: Modbus Tools Modbus Poll
 CVE-2022-4856 (A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5. ...)
-	TODO: check
+	NOT-FOR-US: Modbus Tools Modbus Slave
 CVE-2022-4855 (A vulnerability, which was classified as critical, was found in Source ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Lead Management System
 CVE-2022-48196 (Certain NETGEAR devices are affected by a buffer overflow by an unauth ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2020-36638 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Chris92de ...)
-	TODO: check
+	NOT-FOR-US: Chris92de AdminServ
 CVE-2020-36637 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Chris92de ...)
-	TODO: check
+	NOT-FOR-US: Chris92de AdminServ
 CVE-2018-25060 (A vulnerability was found in Macaron csrf and classified as problemati ...)
 	TODO: check
 CVE-2018-25059 (A vulnerability was found in pastebinit up to 0.2.2 and classified as  ...)
@@ -31,7 +31,7 @@ CVE-2017-20153 (A vulnerability has been found in aerouk imageserve and classifi
 CVE-2017-20152 (A vulnerability, which was classified as problematic, was found in aer ...)
 	TODO: check
 CVE-2017-20151 (A vulnerability classified as problematic was found in iText RUPS. Thi ...)
-	TODO: check
+	NOT-FOR-US: iText RUPS
 CVE-2022-48195
 	RESERVED
 CVE-2022-48194 (TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0dd69d7132184469cdcafa4e303267b242a86767

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0dd69d7132184469cdcafa4e303267b242a86767
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221230/93396678/attachment.htm>
