[Git][security-tracker-team/security-tracker][master] Process some NFUs

Sun May 1 10:38:57 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3d0ce8fa by Salvatore Bonaccorso at 2022-05-01T11:38:29+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -44,7 +44,7 @@ CVE-2022-29947 (Woodpecker before 0.15.1 allows XSS via build logs because web/s
 CVE-2022-29946
 	RESERVED
 CVE-2022-29945 (DJI drone devices sold in 2017 through 2022 broadcast unencrypted info ...)
-	TODO: check
+	NOT-FOR-US: DJI drone devices
 CVE-2022-29944
 	RESERVED
 CVE-2022-29943
@@ -4938,7 +4938,7 @@ CVE-2022-28200
 CVE-2022-28199
 	RESERVED
 CVE-2022-28198 (NVIDIA Omniverse Nucleus and Cache contain a vulnerability in its conf ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2022-28197 (NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cbo ...)
 	NOT-FOR-US: NVIDIA Jetson Linux Driver Package
 CVE-2022-28196 (NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cbo ...)
@@ -39203,7 +39203,7 @@ CVE-2021-42003
 CVE-2021-42002 (Zoho ManageEngine ADManager Plus before 7115 is vulnerable to a filter ...)
 	NOT-FOR-US: Zoho ManageEngine
 CVE-2021-42001 (PingID Desktop prior to 1.7.3 has a misconfiguration in the encryption ...)
-	TODO: check
+	NOT-FOR-US: pingidentity
 CVE-2021-42000 (When a password reset or password change flow with an authentication p ...)
 	NOT-FOR-US: pingidentity
 CVE-2021-41999
@@ -39217,11 +39217,11 @@ CVE-2021-41996
 CVE-2021-41995
 	RESERVED
 CVE-2021-41994 (A misconfiguration of RSA in PingID iOS app prior to 1.19 is vulnerabl ...)
-	TODO: check
+	NOT-FOR-US: pingidentity
 CVE-2021-41993 (A misconfiguration of RSA in PingID Android app prior to 1.19 is vulne ...)
-	TODO: check
+	NOT-FOR-US: pingidentity
 CVE-2021-41992 (A misconfiguration of RSA in PingID Windows Login prior to 2.7 is vuln ...)
-	TODO: check
+	NOT-FOR-US: pingidentity
 CVE-2021-41991 (The in-memory certificate cache in strongSwan before 5.9.4 has a remot ...)
 	{DSA-4989-1 DLA-2788-1}
 	- strongswan 5.9.4-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d0ce8fa7617c4b46ab25d4347c5f7518c5c73ce

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d0ce8fa7617c4b46ab25d4347c5f7518c5c73ce
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220501/96243d72/attachment.htm>
