[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jan 9 20:16:08 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d435dccf by Salvatore Bonaccorso at 2022-01-09T21:15:43+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10,7 +10,7 @@ CVE-2022-22846 (The dnslib package through 0.9.16 for Python does not verify tha
 	- python-dnslib <unfixed>
 	NOTE: https://github.com/paulc/dnslib/issues/30
 CVE-2022-22845 (QXIP SIPCAPTURE homer-app before 1.4.28 for HOMER 7.x has the same 167 ...)
-	TODO: check
+	NOT-FOR-US: QXIP SIPCAPTURE homer-app for HOMER
 CVE-2022-22844 (LibTIFF 4.3.0 has an out-of-bounds read in _TIFFmemcpy in tif_unix.c i ...)
 	- tiff <unfixed>
 	[bullseye] - tiff <no-dsa> (Minor issue)
@@ -32,7 +32,7 @@ CVE-2022-22838
 CVE-2022-22837
 	RESERVED
 CVE-2022-22836 (CoreFTP Server before 727 allows directory traversal (for file creatio ...)
-	TODO: check
+	NOT-FOR-US: CoreFTP
 CVE-2022-22835
 	RESERVED
 CVE-2022-22834
@@ -56,7 +56,7 @@ CVE-2021-46165 (Zoho ManageEngine Desktop Central before 10.0.662, during startu
 CVE-2021-46164 (Zoho ManageEngine Desktop Central before 10.0.662 allows remote code e ...)
 	NOT-FOR-US: Zoho ManageEngine
 CVE-2021-46163 (Kentico Xperience 13.0.44 allows XSS via an XML document to the Media  ...)
-	TODO: check
+	NOT-FOR-US: Kentico Xperience CMS
 CVE-2022-0156
 	RESERVED
 CVE-2022-22827 (storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an in ...)
@@ -2437,7 +2437,7 @@ CVE-2021-45858
 CVE-2021-45857
 	RESERVED
 CVE-2021-45856 (Accu-Time Systems MAXIMUS 1.0 telnet service suffers from a remote buf ...)
-	TODO: check
+	NOT-FOR-US: Accu-Time Systems MAXIMUS
 CVE-2021-45855
 	RESERVED
 CVE-2021-45854



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d435dccf5ce199ff4ec6a22aeaa70c1a1b314c98

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d435dccf5ce199ff4ec6a22aeaa70c1a1b314c98
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220109/ea9d3560/attachment.htm>

More information about the debian-security-tracker-commits mailing list