[Git][security-tracker-team/security-tracker][master] Process NFUs

Tue Mar 29 10:12:46 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1fbb7d9a by Salvatore Bonaccorso at 2022-03-29T11:12:24+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4810,7 +4810,7 @@ CVE-2022-26271 (74cmsSE v3.4.1 was discovered to contain an arbitrary file read
 CVE-2022-26270
 	RESERVED
 CVE-2022-26269 (Suzuki Connect v1.0.15 allows attackers to tamper with displayed messa ...)
-	TODO: check
+	NOT-FOR-US: Suzuki Connect
 CVE-2022-26268 (Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerabi ...)
 	NOT-FOR-US: Xiaohuanxiong
 CVE-2022-26267 (Piwigo v12.2.0 was discovered to contain an information leak via the a ...)
@@ -6762,7 +6762,7 @@ CVE-2022-25523 (TypesetterCMS v5.1 was discovered to contain a Cross-Site Reques
 CVE-2022-25522
 	RESERVED
 CVE-2022-25521 (UNNO v03.11.00 was discovered to contain access control issue. ...)
-	TODO: check
+	NOT-FOR-US: UNNO
 CVE-2022-25520
 	RESERVED
 CVE-2022-25519
@@ -6978,7 +6978,7 @@ CVE-2022-25422
 CVE-2022-25421
 	RESERVED
 CVE-2022-25420 (NTT Resonant Incorporated goo blog App Web Application 1.0 is vulnerab ...)
-	TODO: check
+	NOT-FOR-US: NTT Resonant Incorporated goo blog App Web Application
 CVE-2022-25419
 	RESERVED
 CVE-2022-25418 (Tenda AC9 V15.03.2.21_cn was discovered to contain a stack overflow vi ...)
@@ -8480,9 +8480,9 @@ CVE-2022-24958 (drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.
 	NOTE: Fixed by: https://git.kernel.org/linus/89f3594d0de58e8a57d92d497dea9fee3d4b9cda (5.17-rc1)
 	NOTE: Fixed by: https://git.kernel.org/linus/501e38a5531efbd77d5c73c0ba838a889bfc1d74 (5.17-rc1)
 CVE-2022-24957 (DHC Vision eQMS through 5.4.8.322 has Persistent XSS due to insufficie ...)
-	TODO: check
+	NOT-FOR-US: DHC Vision eQMS
 CVE-2022-24956 (An issue was discovered in Shopware B2B-Suite through 4.4.1. The sort- ...)
-	TODO: check
+	NOT-FOR-US: Shopware B2B-Suite
 CVE-2022-24955 (Foxit PDF Reader before 11.2.1 and Foxit PDF Editor before 11.2.1 have ...)
 	NOT-FOR-US: Foxit
 CVE-2022-24954 (Foxit PDF Reader before 11.2.1 and Foxit PDF Editor before 11.2.1 have ...)
@@ -8825,7 +8825,7 @@ CVE-2022-24791
 CVE-2022-24790
 	RESERVED
 CVE-2022-24789 (C1 CMS is an open-source, .NET based Content Management System (CMS).  ...)
-	TODO: check
+	NOT-FOR-US: C1 CMS
 CVE-2022-24788
 	RESERVED
 CVE-2022-24787



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fbb7d9aeae0283cdef5caf18bf0537548f74918

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fbb7d9aeae0283cdef5caf18bf0537548f74918
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220329/bac50ae9/attachment-0001.htm>
