[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Thu Jul 7 09:30:50 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d519edad by Neil Williams at 2022-07-07T09:30:34+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8083,7 +8083,7 @@ CVE-2022-1957
 CVE-2022-1956
 	RESERVED
 CVE-2022-1955 (Session 1.13.0 allows an attacker with physical access to the victim's ...)
-	TODO: check
+	NOT-FOR-US: oxen-io/session-android
 CVE-2022-1954 (A Regular Expression Denial of Service vulnerability in GitLab CE/EE a ...)
 	- gitlab <unfixed>
 CVE-2022-1953 (The Product Configurator for WooCommerce WordPress plugin before 1.2.3 ...)
@@ -44970,55 +44970,55 @@ CVE-2022-21789
 CVE-2022-21788
 	RESERVED
 CVE-2022-21787 (In audio DSP, there is a possible out of bounds write due to a missing ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21786 (In audio DSP, there is a possible memory corruption due to improper ca ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21785 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21784 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21783 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21782 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21781 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21780 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21779 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21778
 	RESERVED
 CVE-2022-21777 (In Autoboot, there is a possible permission bypass due to a missing pe ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21776 (In MDP, there is a possible use after free due to a race condition. Th ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21775 (In sched driver, there is a possible use after free due to improper lo ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21774 (In TEEI driver, there is a possible use after free due to a race condi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21773 (In TEEI driver, there is a possible use after free due to a race condi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21772 (In TEEI driver, there is a possible type confusion due to a race condi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21771 (In GED driver, there is a possible use after free due to a race condit ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21770 (In sound driver, there is a possible information disclosure due to sym ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21769 (In CCCI, there is a possible out of bounds read due to a missing bound ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21768 (In Bluetooth, there is a possible out of bounds write due to a missing ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21767 (In Bluetooth, there is a possible out of bounds write due to a missing ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21766 (In CCCI, there is a possible out of bounds write due to a missing boun ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21765 (In CCCI, there is a possible out of bounds write due to a missing boun ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21764 (In telecom service, there is a possible information disclosure due to  ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21763 (In telecom service, there is a possible information disclosure due to  ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21762 (In apusys driver, there is a possible system crash due to an integer o ...)
 	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21761 (In apusys driver, there is a possible system crash due to an integer o ...)
@@ -45056,7 +45056,7 @@ CVE-2022-21746 (In imgsensor, there is a possible out of bounds read due to a mi
 CVE-2022-21745 (In WIFI Firmware, there is a possible memory corruption due to a use a ...)
 	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21744 (In Modem 2G RR, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21743 (In ion, there is a possible use after free due to an integer overflow. ...)
 	NOT-FOR-US: MediaTek driver for Android
 CVE-2021-44230 (PortSwigger Burp Suite Enterprise Edition before 2021.11 on Windows ha ...)
@@ -53591,9 +53591,9 @@ CVE-2022-20085 (In netdiag, there is a possible symbolic link following due to a
 CVE-2022-20084 (In telephony, there is a possible way to disable receiving emergency b ...)
 	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-20083 (In Modem 2G/3G CC, there is a possible out of bounds write due to a mi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-20082 (In GPU, there is a possible use after free due to a race condition. Th ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-20081 (In A-GPS, there is a possible man in the middle attack due to improper ...)
 	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-20080 (In SUB2AF, there is a possible memory corruption due to a race conditi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d519edadd65e1c83e25cf31bc0f73280f2913d6f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d519edadd65e1c83e25cf31bc0f73280f2913d6f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220707/458513cd/attachment.htm>

More information about the debian-security-tracker-commits mailing list