[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Mon Feb 14 12:19:44 GMT 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cb08db38 by Neil Williams at 2022-02-14T12:19:17+00:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -351,7 +351,7 @@ CVE-2022-24979
 CVE-2022-24978
 	RESERVED
 CVE-2022-24977 (ImpressCMS before 1.4.2 allows unauthenticated remote code execution v ...)
-	TODO: check
+	NOT-FOR-US: ImpressCMS
 CVE-2022-0579
 	RESERVED
 CVE-2022-0578
@@ -2799,7 +2799,7 @@ CVE-2003-5001
 CVE-2022-24111 (In Mahara 21.04 before 21.04.3 and 21.10 before 21.10.1, portfolios cr ...)
 	- mahara <removed>
 CVE-2022-24110 (Kiteworks MFT 7.5 may allow an unauthorized user to reset other users' ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks managed file transfer
 CVE-2022-24109
 	RESERVED
 CVE-2022-24108
@@ -7626,7 +7626,7 @@ CVE-2022-22781
 CVE-2022-22780 (The Zoom Client for Meetings chat functionality was susceptible to Zip ...)
 	NOT-FOR-US: Zoom
 CVE-2022-22779 (The Keybase Clients for macOS and Windows before version 5.9.0 fails t ...)
-	TODO: check
+	NOT-FOR-US: Keybase on MacOS & Windows
 CVE-2022-22778
 	RESERVED
 CVE-2022-22777
@@ -16520,7 +16520,7 @@ CVE-2022-21702 (Grafana is an open-source platform for monitoring and observabil
 CVE-2022-21701 (Istio is an open platform to connect, manage, and secure microservices ...)
 	NOT-FOR-US: Istio
 CVE-2022-21700 (Micronaut is a JVM-based, full stack Java framework designed for build ...)
-	TODO: check
+	NOT-FOR-US: Micronaut
 CVE-2022-21699 (IPython (Interactive Python) is a command shell for interactive comput ...)
 	{DSA-5065-1 DLA-2896-1}
 	- ipython 7.31.1-1 (bug #1004122)
@@ -16561,7 +16561,7 @@ CVE-2022-21688 (OnionShare is an open source tool that lets you securely and ano
 	- onionshare <unfixed>
 	NOTE: https://github.com/onionshare/onionshare/security/advisories/GHSA-x7wr-283h-5h2v
 CVE-2022-21687 (gh-ost is a triggerless online schema migration solution for MySQL. Ve ...)
-	TODO: check
+	NOT-FOR-US: GitHub Online Schema
 CVE-2022-21686 (PrestaShop is an Open Source e-commerce platform. Starting with versio ...)
 	NOT-FOR-US: PrestaShop
 CVE-2022-21685 (Frontier is Substrate's Ethereum compatibility layer. Prior to commit  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb08db386c2a6f555d0050145faee3d222baeeb6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb08db386c2a6f555d0050145faee3d222baeeb6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220214/9aaf49b4/attachment.htm>

More information about the debian-security-tracker-commits mailing list