[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 29 21:29:37 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e4b1d12b by Salvatore Bonaccorso at 2022-06-29T22:29:12+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -115,7 +115,7 @@ CVE-2022-2254
 CVE-2022-2253
 	RESERVED
 CVE-2022-2252 (Open Redirect in GitHub repository microweber/microweber prior to 1.2. ...)
-	TODO: check
+	NOT-FOR-US: microweber
 CVE-2022-2251
 	RESERVED
 CVE-2022-2250
@@ -475,13 +475,13 @@ CVE-2017-20114 (A vulnerability has been found in TrueConf Server 4.3.7 and clas
 CVE-2017-20113 (A vulnerability, which was classified as problematic, was found in Tru ...)
 	TODO: check
 CVE-2017-20112 (A vulnerability has been found in IVPN Client 2.6.6120.33863 and class ...)
-	TODO: check
+	NOT-FOR-US: IVPN Client
 CVE-2017-20111 (A vulnerability, which was classified as critical, was found in Teleop ...)
-	TODO: check
+	NOT-FOR-US: Teleopti WFM
 CVE-2017-20110 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: Teleopti WFM
 CVE-2017-20109 (A vulnerability classified as problematic was found in Teleopti WFM up ...)
-	TODO: check
+	NOT-FOR-US: Teleopti WFM
 CVE-2022-34659
 	RESERVED
 CVE-2022-34647
@@ -876,7 +876,7 @@ CVE-2022-2205
 CVE-2022-2204
 	RESERVED
 CVE-2017-20108 (A vulnerability classified as problematic has been found in Easy Table ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2017-20107 (A vulnerability, which was classified as problematic, was found in Sha ...)
 	NOT-FOR-US: ShadeYouVPN.com Client
 CVE-2017-20106 (A vulnerability, which was classified as critical, has been found in L ...)
@@ -3182,9 +3182,9 @@ CVE-2022-33641
 CVE-2022-33640
 	RESERVED
 CVE-2022-33639 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability.  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2022-33638 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability.  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2022-33637
 	RESERVED
 CVE-2022-33636
@@ -4262,7 +4262,7 @@ CVE-2022-33109
 CVE-2022-33108 (XPDF v4.04 was discovered to contain a stack overflow vulnerability vi ...)
 	- xpdf <not-affected> (Debian uses poppler, which is not affected)
 CVE-2022-33107 (ThinkPHP v6.0.12 was discovered to contain a deserialization vulnerabi ...)
-	TODO: check
+	NOT-FOR-US: ThinkPHP
 CVE-2022-33106
 	RESERVED
 CVE-2022-33105 (Redis v7.0 was discovered to contain a memory leak via the component s ...)
@@ -4366,15 +4366,15 @@ CVE-2022-33063
 CVE-2022-33062
 	RESERVED
 CVE-2022-33061 (Online Railway Reservation System v1.0 was discovered to contain a SQL ...)
-	TODO: check
+	NOT-FOR-US: Online Railway Reservation System
 CVE-2022-33060 (Online Railway Reservation System v1.0 was discovered to contain a SQL ...)
-	TODO: check
+	NOT-FOR-US: Online Railway Reservation System
 CVE-2022-33059 (Online Railway Reservation System v1.0 was discovered to contain a SQL ...)
-	TODO: check
+	NOT-FOR-US: Online Railway Reservation System
 CVE-2022-33058 (Online Railway Reservation System v1.0 was discovered to contain a SQL ...)
-	TODO: check
+	NOT-FOR-US: Online Railway Reservation System
 CVE-2022-33057 (Online Railway Reservation System v1.0 was discovered to contain a SQL ...)
-	TODO: check
+	NOT-FOR-US: Online Railway Reservation System
 CVE-2022-33056 (Online Railway Reservation System v1.0 was discovered to contain a SQL ...)
 	NOT-FOR-US: Online Railway Reservation System
 CVE-2022-33055 (Online Railway Reservation System v1.0 was discovered to contain a SQL ...)
@@ -4404,7 +4404,7 @@ CVE-2022-33044
 CVE-2022-33043
 	RESERVED
 CVE-2022-33042 (Online Railway Reservation System v1.0 was discovered to contain a SQL ...)
-	TODO: check
+	NOT-FOR-US: Online Railway Reservation System
 CVE-2022-33041
 	RESERVED
 CVE-2022-33040



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4b1d12b186de562efc3bfa9aa22a461871ea61a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4b1d12b186de562efc3bfa9aa22a461871ea61a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220629/76512833/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list