[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Sat Jun 11 14:29:55 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aeac0582 by Neil Williams at 2022-06-11T14:29:38+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10773,13 +10773,13 @@ CVE-2022-29097
 CVE-2022-29096
 	RESERVED
 CVE-2022-29095 (Dell SupportAssist Client Consumer versions (3.10.4 and prior) and Del ...)
-	TODO: check
+	NOT-FOR-US: Dell SupportAssist
 CVE-2022-29094 (Dell SupportAssist Client Consumer versions (3.10.4 and versions prior ...)
-	TODO: check
+	NOT-FOR-US: Dell SupportAssist
 CVE-2022-29093 (Dell SupportAssist Client Consumer versions (3.10.4 and versions prior ...)
-	TODO: check
+	NOT-FOR-US: Dell SupportAssist
 CVE-2022-29092 (Dell SupportAssist Client Consumer versions (3.11.0 and versions prior ...)
-	TODO: check
+	NOT-FOR-US: Dell SupportAssist
 CVE-2022-29091 (Dell Unity, Dell UnityVSA, and Dell UnityXT versions prior to 5.2.0.0. ...)
 	NOT-FOR-US: Dell
 CVE-2022-29090
@@ -12667,17 +12667,17 @@ CVE-2022-28388 (usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Lin
 	- linux 5.17.3-1
 	NOTE: https://git.kernel.org/linus/3d3925ff6433f98992685a9679613a2cc97f3ce2 (5.18-rc1)
 CVE-2022-28387 (An issue was discovered in certain Verbatim drives through 2022-03-31. ...)
-	TODO: check
+	NOT-FOR-US: Verbatim USB drives
 CVE-2022-28386 (An issue was discovered in certain Verbatim drives through 2022-03-31. ...)
-	TODO: check
+	NOT-FOR-US: Verbatim USB drives
 CVE-2022-28385 (An issue was discovered in certain Verbatim drives through 2022-03-31. ...)
-	TODO: check
+	NOT-FOR-US: Verbatim USB drives
 CVE-2022-28384 (An issue was discovered in certain Verbatim drives through 2022-03-31. ...)
-	TODO: check
+	NOT-FOR-US: Verbatim USB drives
 CVE-2022-28383 (An issue was discovered in certain Verbatim drives through 2022-03-31. ...)
-	TODO: check
+	NOT-FOR-US: Verbatim USB drives
 CVE-2022-28382 (An issue was discovered in certain Verbatim drives through 2022-03-31. ...)
-	TODO: check
+	NOT-FOR-US: Verbatim USB drives
 CVE-2022-1214
 	REJECTED
 CVE-2022-1213 (SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/li ...)
@@ -20216,13 +20216,13 @@ CVE-2022-25809 (Improper Neutralization of audio output from 3rd and 4th Generat
 CVE-2022-25808
 	RESERVED
 CVE-2022-25807 (An issue was discovered in the IGEL Universal Management Suite (UMS) 6 ...)
-	TODO: check
+	NOT-FOR-US: IGEL UMS
 CVE-2022-25806 (An issue was discovered in the IGEL Universal Management Suite (UMS) 6 ...)
-	TODO: check
+	NOT-FOR-US: IGEL UMS
 CVE-2022-25805 (An issue was discovered in the IGEL Universal Management Suite (UMS) 6 ...)
-	TODO: check
+	NOT-FOR-US: IGEL UMS
 CVE-2022-25804 (An issue was discovered in the IGEL Universal Management Suite (UMS) 6 ...)
-	TODO: check
+	NOT-FOR-US: IGEL UMS
 CVE-2022-25803
 	RESERVED
 CVE-2022-25802
@@ -38723,41 +38723,41 @@ CVE-2022-21764
 CVE-2022-21763
 	RESERVED
 CVE-2022-21762 (In apusys driver, there is a possible system crash due to an integer o ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21761 (In apusys driver, there is a possible system crash due to an integer o ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21760 (In apusys driver, there is a possible system crash due to an integer o ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21759 (In power service, there is a possible out of bounds write due to a mis ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21758 (In ccu, there is a possible memory corruption due to a double free. Th ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21757 (In WIFI Firmware, there is a possible system crash due to a missing co ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21756 (In WLAN driver, there is a possible out of bounds read due to an incor ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21755 (In WLAN driver, there is a possible out of bounds read due to an incor ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21754 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21753 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21752 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21751 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21750 (In WLAN driver, there is a possible out of bounds write due to a missi ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21749 (In telephony, there is a possible information disclosure due to a miss ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21748 (In telephony, there is a possible information disclosure due to a miss ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21747 (In imgsensor, there is a possible out of bounds read due to a missing  ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21746 (In imgsensor, there is a possible out of bounds read due to a missing  ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21745 (In WIFI Firmware, there is a possible memory corruption due to a use a ...)
-	TODO: check
+	NOT-FOR-US: MediaTek driver for Android
 CVE-2022-21744
 	RESERVED
 CVE-2022-21743 (In ion, there is a possible use after free due to an integer overflow. ...)
@@ -48916,11 +48916,11 @@ CVE-2021-41758
 CVE-2021-41757
 	RESERVED
 CVE-2021-41756 (dynamicMarkt <= 3.10 is affected by SQL injection in the kat parame ...)
-	TODO: check
+	NOT-FOR-US: dynamicMarkt
 CVE-2021-41755 (dynamicMarkt <= 3.10 is affected by SQL injection in the kat1 param ...)
-	TODO: check
+	NOT-FOR-US: dynamicMarkt
 CVE-2021-41754 (dynamicMarkt <= 3.10 is affected by SQL injection in the parent par ...)
-	TODO: check
+	NOT-FOR-US: dynamicMarkt
 CVE-2021-41753 (A denial-of-service attack in WPA2, and WPA3-SAE authentication method ...)
 	NOT-FOR-US: D-Link
 CVE-2021-41752 (Stack overflow vulnerability in Jerryscript before commit e1ce7dd72712 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aeac0582c97db33a8ac7dfa65a5a2323ded7fa30

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aeac0582c97db33a8ac7dfa65a5a2323ded7fa30
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220611/30ecc155/attachment.htm>

More information about the debian-security-tracker-commits mailing list