[Git][security-tracker-team/security-tracker][master] Process NFUs

Sat Mar 12 06:54:29 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c013dc4 by Salvatore Bonaccorso at 2022-03-12T07:53:58+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,7 +9,7 @@ CVE-2022-0934
 CVE-2022-0933
 	RESERVED
 CVE-2022-0932 (Improper Authorization in GitHub repository saleor/saleor prior to 3.1 ...)
-	TODO: check
+	NOT-FOR-US: saleor
 CVE-2022-0931
 	RESERVED
 CVE-2022-0930
@@ -907,9 +907,9 @@ CVE-2022-26019
 CVE-2022-24299
 	RESERVED
 CVE-2022-0871 (Improper Authorization in GitHub repository gogs/gogs prior to 0.12.5. ...)
-	TODO: check
+	NOT-FOR-US: Go Git Service
 CVE-2022-0870 (Server-Side Request Forgery (SSRF) in GitHub repository gogs/gogs prio ...)
-	TODO: check
+	NOT-FOR-US: Go Git Service
 CVE-2022-0869 (Multiple Open Redirect in GitHub repository nitely/spirit prior to 0.1 ...)
 	NOT-FOR-US: Spirit forum software
 CVE-2022-26507
@@ -3277,7 +3277,7 @@ CVE-2022-25636 (net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.
 CVE-2022-25622
 	RESERVED
 CVE-2022-25621 (UUNIVERGE WA 1020 Ver8.2.11 and prior, UNIVERGE WA 1510 Ver8.2.11 and  ...)
-	TODO: check
+	NOT-FOR-US: UUNIVERGE
 CVE-2022-25620
 	RESERVED
 CVE-2022-25619
@@ -3319,7 +3319,7 @@ CVE-2022-25602
 CVE-2022-25601 (Reflected Cross-Site Scripting (XSS) vulnerability affecting parameter ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-25600 (Cross-Site Request Forgery (CSRF) vulnerability affecting Delete Marke ...)
-	TODO: check
+	NOT-FOR-US: WordPress Plugin
 CVE-2022-25599 (Cross-Site Request Forgery (CSRF) vulnerability leading to event delet ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-25598



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c013dc4882528a35f0bead9f3048b99ea337f10

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c013dc4882528a35f0bead9f3048b99ea337f10
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220312/c057bc65/attachment.htm>
