[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Thu Jul 7 09:19:02 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ce9eda12 by Neil Williams at 2022-07-07T09:18:46+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -28376,19 +28376,19 @@ CVE-2022-0588 (Exposure of Sensitive Information to an Unauthorized Actor in Pac
 CVE-2022-0587 (Improper Authorization in Packagist librenms/librenms prior to 22.2.0. ...)
 	NOT-FOR-US: LibreNMS
 CVE-2021-46687 (JFrog Artifactory prior to version 7.31.10 and 6.23.38 is vulnerable t ...)
-	TODO: check
+	NOT-FOR-US: JFrog Artifactory
 CVE-2021-46270 (JFrog Artifactory before 7.31.10, is vulnerable to Broken Access Contr ...)
 	NOT-FOR-US: JFrog Artifactory
 CVE-2021-45730 (JFrog Artifactory prior to 7.31.10, is vulnerable to Broken Access Con ...)
 	NOT-FOR-US: JFrog Artifactory
 CVE-2021-45721 (JFrog Artifactory prior to version 7.29.8 and 6.23.38 is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: JFrog Artifactory
 CVE-2021-45074 (JFrog Artifactory before 7.29.3 and 6.23.38, is vulnerable to Broken A ...)
 	NOT-FOR-US: JFrog Artifactory
 CVE-2021-41834 (JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable t ...)
 	NOT-FOR-US: JFrog Artifactory
 CVE-2021-23163 (JFrog Artifactory prior to version 7.33.6 and 6.23.38, is vulnerable t ...)
-	TODO: check
+	NOT-FOR-US: JFrog Artifactory
 CVE-2022-25146 (The Remote App module in Liferay Portal through v7.4.3.8 and Liferay D ...)
 	NOT-FOR-US: Liferay
 CVE-2022-25145
@@ -80588,13 +80588,13 @@ CVE-2021-31681
 CVE-2021-31680
 	RESERVED
 CVE-2021-31679 (An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: PESCMS Team
 CVE-2021-31678 (An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: PESCMS Team
 CVE-2021-31677 (An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: PESCMS Team
 CVE-2021-31676 (A reflected XSS was discovered in PESCMS-V2.3.3. When combined with CS ...)
-	TODO: check
+	NOT-FOR-US: PESCMS Team
 CVE-2021-31675
 	RESERVED
 CVE-2021-31674 (Cyclos 4 PRO 4.14.7 and before does not validate user input at error i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ce9eda12e24f2a7978e45cc2069c3fbf8de0ce8e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ce9eda12e24f2a7978e45cc2069c3fbf8de0ce8e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220707/52de872e/attachment.htm>

More information about the debian-security-tracker-commits mailing list