[Git][security-tracker-team/security-tracker][master] Process NFUs

Mon Feb 21 20:26:06 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e88cc34e by Salvatore Bonaccorso at 2022-02-21T21:25:36+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -551,7 +551,7 @@ CVE-2022-0694
 CVE-2022-0693
 	RESERVED
 CVE-2022-0692 (Open Redirect on Rudloff/alltube in Packagist rudloff/alltube prior to ...)
-	TODO: check
+	NOT-FOR-US: alltube
 CVE-2022-0691 (Authorization Bypass Through User-Controlled Key in NPM url-parse prio ...)
 	TODO: check
 CVE-2022-25369
@@ -1901,7 +1901,7 @@ CVE-2022-24917
 CVE-2022-24911
 	RESERVED
 CVE-2022-0564 (A vulnerability in Qlik Sense Enterprise on Windows could allow an rem ...)
-	TODO: check
+	NOT-FOR-US: Qlik Sense Enterprise
 CVE-2022-24916 (Optimism before @eth-optimism/l2geth at 0.5.11 allows economic griefing b ...)
 	NOT-FOR-US: Optimism
 CVE-2022-24908
@@ -2794,7 +2794,7 @@ CVE-2022-24555
 CVE-2022-24554
 	RESERVED
 CVE-2022-24553 (An issue was found in Zfaka <= 1.4.5. The verification of the backg ...)
-	TODO: check
+	NOT-FOR-US: Zfaka
 CVE-2022-24552 (StarWind SAN and NAS before 0.2 build 1685 allows remote code executio ...)
 	NOT-FOR-US: StarWind
 CVE-2022-24551 (StarWind SAN and NAS before 0.2 build 1685 allows users to reset other ...)
@@ -3450,7 +3450,7 @@ CVE-2022-24302
 CVE-2022-24296
 	RESERVED
 CVE-2022-24295 (Okta Advanced Server Access Client for Windows prior to version 1.57.0 ...)
-	TODO: check
+	NOT-FOR-US: Okta Advanced Server Access Client
 CVE-2022-22986
 	RESERVED
 CVE-2022-0472 (Unrestricted Upload of File with Dangerous Type in Packagist jsdecena/ ...)
@@ -14697,7 +14697,7 @@ CVE-2021-45010
 CVE-2021-45009
 	RESERVED
 CVE-2021-45008 (Plesk CMS 18.0.37 is affected by an insecure permissions vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Plesk CMS
 CVE-2021-45007 (Plesk 18.0.37 is affected by a Cross Site Request Forgery (CSRF) vulne ...)
 	NOT-FOR-US: Plesk
 CVE-2021-45006
@@ -61941,9 +61941,9 @@ CVE-2021-27799 (ean_leading_zeroes in backend/upcean.c in Zint Barcode Generator
 CVE-2021-27798
 	RESERVED
 CVE-2021-27797 (Brocade Fabric OS before Brocade Fabric OS v8.2.1c, v8.1.2h, and all v ...)
-	TODO: check
+	NOT-FOR-US: Brocade
 CVE-2021-27796 (A vulnerability in Brocade Fabric OS versions before Brocade Fabric OS ...)
-	TODO: check
+	NOT-FOR-US: Brocade
 CVE-2021-27795
 	RESERVED
 CVE-2021-27794 (A vulnerability in the authentication mechanism of Brocade Fabric OS v ...)
@@ -62025,11 +62025,11 @@ CVE-2021-27757
 CVE-2021-27756
 	RESERVED
 CVE-2021-27755 ("Sametime Android potential path traversal vulnerability when using Fi ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2021-27754
 	RESERVED
 CVE-2021-27753 ("Sametime Android PathTraversal Vulnerability" ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2021-27752
 	RESERVED
 CVE-2021-27751
@@ -68859,7 +68859,7 @@ CVE-2021-25057 (The Translation Exchange WordPress plugin through 1.0.14 was vul
 CVE-2021-25056
 	RESERVED
 CVE-2021-25055 (The FeedWordPress plugin before 2022.0123 is affected by a Reflected C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25054 (The WPcalc WordPress plugin through 2.1 does not sanitize user input i ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-25053 (The WP Coder WordPress plugin before 2.5.2 within the wow-company admi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e88cc34e7a207e95bbb3d83715fc05b022f14973

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e88cc34e7a207e95bbb3d83715fc05b022f14973
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220221/062f255b/attachment.htm>
