[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jun 24 22:29:18 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
852b2c47 by Salvatore Bonaccorso at 2022-06-24T23:28:49+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -303,17 +303,17 @@ CVE-2022-2187
CVE-2022-2186
RESERVED
CVE-2017-20097 (A vulnerability was found in WP-Filebase Download Manager Plugin 3.4.4 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20096 (A vulnerability classified as problematic has been found in WP-SpamFre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20095 (A vulnerability classified as critical was found in Simple Ads Manager ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20094 (A vulnerability, which was classified as problematic, has been found i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20093 (A vulnerability, which was classified as problematic, was found in Dow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20092 (A vulnerability classified as problematic was found in Google Analytic ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-34343
RESERVED
CVE-2022-34342
@@ -1428,11 +1428,11 @@ CVE-2022-2123
CVE-2022-2122
RESERVED
CVE-2022-2121 (OFFIS DCMTK's (All versions prior to 3.6.7) has a NULL pointer derefer ...)
- TODO: check
+ NOT-FOR-US: OFFIS DCMTK
CVE-2022-2120 (OFFIS DCMTK's (All versions prior to 3.6.7) service class user (SCU) i ...)
- TODO: check
+ NOT-FOR-US: OFFIS DCMTK
CVE-2022-2119 (OFFIS DCMTK's (All versions prior to 3.6.7) service class provider (SC ...)
- TODO: check
+ NOT-FOR-US: OFFIS DCMTK
CVE-2022-2118
RESERVED
CVE-2014-125025 (A vulnerability classified as problematic has been found in FFmpeg 2.0 ...)
@@ -1656,13 +1656,13 @@ CVE-2022-2107
CVE-2022-2106
RESERVED
CVE-2022-2105 (Client-side JavaScript controls may be bypassed to change user credent ...)
- TODO: check
+ NOT-FOR-US: Secheron
CVE-2022-2104 (The www-data (Apache web server) account is configured to run sudo wit ...)
- TODO: check
+ NOT-FOR-US: Secheron
CVE-2022-2103 (An attacker with weak credentials could access the TCP port via an ope ...)
- TODO: check
+ NOT-FOR-US: Secheron
CVE-2022-2102 (Controls limiting uploads to certain file extensions may be bypassed. ...)
- TODO: check
+ NOT-FOR-US: Secheron
CVE-2022-2101
RESERVED
CVE-2022-33880
@@ -4657,7 +4657,7 @@ CVE-2022-2015 (Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/d
CVE-2022-2014 (Code Injection in GitHub repository jgraph/drawio prior to 19.0.2. ...)
NOT-FOR-US: jgraph/drawio
CVE-2022-32530 (A CWE-668 Exposure of Resource to Wrong Sphere vulnerability exists th ...)
- TODO: check
+ NOT-FOR-US: Geo SCADA Mobile
CVE-2022-32529
RESERVED
CVE-2022-32528
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/852b2c4742eeded63b76b826cb6c1456315f92cd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/852b2c4742eeded63b76b826cb6c1456315f92cd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220624/3c77b641/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list