[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jan 27 08:25:23 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
810378a5 by Salvatore Bonaccorso at 2022-01-27T09:25:01+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -61,7 +61,7 @@ CVE-2022-24006
 CVE-2022-24005
 	RESERVED
 CVE-2022-0387 (Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat ...)
-	TODO: check
+	NOT-FOR-US: livehelperchat
 CVE-2022-0386
 	RESERVED
 CVE-2022-0385
@@ -408,7 +408,7 @@ CVE-2022-23948
 CVE-2022-0371
 	RESERVED
 CVE-2022-0370 (Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat ...)
-	TODO: check
+	NOT-FOR-US: livehelperchat
 CVE-2022-0369
 	RESERVED
 CVE-2021-46560 (The firmware on Moxa TN-5900 devices through 3.1 allows command inject ...)
@@ -4256,7 +4256,7 @@ CVE-2022-22830
 CVE-2022-22829
 	RESERVED
 CVE-2022-22828 (An insecure direct object reference for the file-download URL in Synam ...)
-	TODO: check
+	NOT-FOR-US: Synametrics
 CVE-2021-46166 (Zoho ManageEngine Desktop Central before 10.0.662 allows authenticated ...)
 	NOT-FOR-US: Zoho ManageEngine
 CVE-2021-46165 (Zoho ManageEngine Desktop Central before 10.0.662, during startup, lau ...)
@@ -13131,7 +13131,7 @@ CVE-2022-21688 (OnionShare is an open source tool that lets you securely and ano
 CVE-2022-21687
 	RESERVED
 CVE-2022-21686 (PrestaShop is an Open Source e-commerce platform. Starting with versio ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2022-21685 (Frontier is Substrate's Ethereum compatibility layer. Prior to commit  ...)
 	TODO: check
 CVE-2022-21684 (Discourse is an open source discussion platform. Versions prior to 2.7 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/810378a5db69181d0a9d2df310b136df2428fb9a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/810378a5db69181d0a9d2df310b136df2428fb9a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220127/a06bc957/attachment.htm>

More information about the debian-security-tracker-commits mailing list