[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jul 4 20:36:31 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
26c74738 by Salvatore Bonaccorso at 2022-07-04T21:30:42+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -105,7 +105,7 @@ CVE-2022-34896
 CVE-2022-34895
 	RESERVED
 CVE-2022-34894 (In JetBrains Hub before 2022.2.14799, insufficient access control allo ...)
-	TODO: check
+	NOT-FOR-US: JetBrains Hub
 CVE-2022-2285 (Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9 ...)
 	- vim <unfixed>
 	NOTE: https://huntr.dev/bounties/64574b28-1779-458d-a221-06c434042736/
@@ -2071,11 +2071,11 @@ CVE-2022-34169
 CVE-2022-34168
 	RESERVED
 CVE-2022-34151 (Use of hard-coded credentials vulnerability exists in Machine automati ...)
-	TODO: check
+	NOT-FOR-US: OMRON Industrial Automation
 CVE-2022-33971 (Authentication bypass by capture-replay vulnerability exists in Machin ...)
-	TODO: check
+	NOT-FOR-US: OMRON Industrial Automation
 CVE-2022-33208 (Authentication bypass by capture-replay vulnerability exists in Machin ...)
-	TODO: check
+	NOT-FOR-US: OMRON Industrial Automation
 CVE-2022-2165
 	RESERVED
 	{DSA-5168-1}
@@ -2512,7 +2512,7 @@ CVE-2022-34000 (libjxl 0.6.1 has an assertion failure in LowMemoryRenderPipeline
 	- jpeg-xl <unfixed> (bug #1013265)
 	NOTE: https://github.com/libjxl/libjxl/issues/1477
 CVE-2022-33948 (HOME SPOT CUBE2 V102 contains an OS command injection vulnerability du ...)
-	TODO: check
+	NOT-FOR-US: HOME SPOT CUBE2 V102
 CVE-2022-33999
 	RESERVED
 CVE-2022-33998



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/26c74738387c2d62da0492b913d0059677498fc1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/26c74738387c2d62da0492b913d0059677498fc1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220704/785dbcc0/attachment.htm>

More information about the debian-security-tracker-commits mailing list