[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 31 08:47:27 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a13edd94 by Salvatore Bonaccorso at 2022-03-31T09:47:13+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -899,7 +899,7 @@ CVE-2022-27909
 CVE-2022-27908
 	RESERVED
 CVE-2022-27907 (Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF. ...)
-	TODO: check
+	NOT-FOR-US: Sonatype Nexus Repository Manager
 CVE-2022-27906 (Mendelson OFTP2 before 1.1 b43 is affected by directory traversal. To  ...)
 	NOT-FOR-US: Mendelson OFTP2
 CVE-2022-27905
@@ -6876,9 +6876,9 @@ CVE-2022-25622
 CVE-2022-25621 (UUNIVERGE WA 1020 Ver8.2.11 and prior, UNIVERGE WA 1510 Ver8.2.11 and  ...)
 	NOT-FOR-US: UUNIVERGE
 CVE-2022-25620 (Improper Neutralization of Script-Related HTML Tags in a Web Page (Bas ...)
-	TODO: check
+	NOT-FOR-US: Profelis IT Consultancy SambaBox
 CVE-2022-25619 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
-	TODO: check
+	NOT-FOR-US: Profelis IT Consultancy SambaBox
 CVE-2022-25618
 	RESERVED
 CVE-2022-25617
@@ -6920,7 +6920,7 @@ CVE-2022-25600 (Cross-Site Request Forgery (CSRF) vulnerability affecting Delete
 CVE-2022-25599 (Cross-Site Request Forgery (CSRF) vulnerability leading to event delet ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-25598 (Apache DolphinScheduler user registration is vulnerable to Regular exp ...)
-	TODO: check
+	NOT-FOR-US: Apache DolphinScheduler
 CVE-2022-0712 (NULL Pointer Dereference in GitHub repository radareorg/radare2 prior  ...)
 	- radare2 <unfixed>
 	NOTE: https://huntr.dev/bounties/1e572820-e502-49d1-af0e-81833e2eb466



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a13edd949659afeb0763ac0944576bf9db1872e5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a13edd949659afeb0763ac0944576bf9db1872e5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220331/790c79de/attachment.htm>

More information about the debian-security-tracker-commits mailing list