[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 2 20:49:34 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3c717ed9 by Salvatore Bonaccorso at 2022-05-02T21:49:11+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11703,7 +11703,7 @@ CVE-2022-21191
CVE-2022-21190
RESERVED
CVE-2022-21189 (The package dexie before 3.2.2, from 4.0.0-alpha.1 and before 4.0.0-al ...)
- TODO: check
+ NOT-FOR-US: dexie
CVE-2022-21187 (The package libvcs before 0.11.1 are vulnerable to Command Injection v ...)
NOT-FOR-US: libvcs
CVE-2022-21186
@@ -20983,9 +20983,9 @@ CVE-2022-23063
CVE-2022-23062
RESERVED
CVE-2022-23061 (In Shopizer versions 2.0 to 2.17.0 a regular admin can permanently del ...)
- TODO: check
+ NOT-FOR-US: Shopizer
CVE-2022-23060 (A Stored Cross Site Scripting (XSS) vulnerability exists in Shopizer v ...)
- TODO: check
+ NOT-FOR-US: Shopizer
CVE-2022-23059 (A Stored Cross Site Scripting (XSS) vulnerability exists in Shopizer v ...)
NOT-FOR-US: Shopizer
CVE-2022-23058
@@ -22558,7 +22558,7 @@ CVE-2022-0124 (An issue has been discovered affecting GitLab versions prior to 1
CVE-2022-0123 (An issue has been discovered affecting GitLab versions prior to 14.4.5 ...)
- gitlab <unfixed>
CVE-2021-4200 (A Improper Privilege Management vulnerability in SUSE Rancher allows w ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2022-22677
RESERVED
CVE-2022-22676
@@ -52571,7 +52571,7 @@ CVE-2021-36786 (The miniorange_saml (aka Miniorange Saml) extension before 1.4.3
CVE-2021-36785 (The miniorange_saml (aka Miniorange Saml) extension before 1.4.3 for T ...)
NOT-FOR-US: miniorange_saml (aka Miniorange Saml) extension for TYPO3
CVE-2021-36784 (A Improper Privilege Management vulnerability in SUSE Rancher allows u ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2021-36783
RESERVED
CVE-2021-36782
@@ -52583,7 +52583,7 @@ CVE-2021-36780 (A Improper Access Control vulnerability in longhorn of SUSE Long
CVE-2021-36779 (A Improper Access Control vulnerability inf SUSE Longhorn allows any w ...)
NOT-FOR-US: Longhorn
CVE-2021-36778 (A Exposure of Sensitive Information to an Unauthorized Actor vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2021-36777 (A Reliance on Untrusted Inputs in a Security Decision vulnerability in ...)
NOT-FOR-US: OpenSuSE infrastructure
CVE-2021-36776 (A Improper Access Control vulnerability in SUSE Rancher allows remote ...)
@@ -65314,9 +65314,9 @@ CVE-2021-31676
CVE-2021-31675
RESERVED
CVE-2021-31674 (Cyclos 4 PRO 4.14.7 and before does not validate user input at error i ...)
- TODO: check
+ NOT-FOR-US: Cyclos 4 PRO
CVE-2021-31673 (A Dom-based Cross-site scripting (XSS) vulnerability at registration a ...)
- TODO: check
+ NOT-FOR-US: Cyclos 4 PRO
CVE-2021-31672
RESERVED
CVE-2021-31671 (pgsync before 0.6.7 is affected by Information Disclosure of sensitive ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c717ed9621cc1156f2ff65530c607a016f5adaa
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c717ed9621cc1156f2ff65530c607a016f5adaa
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220502/563b7a84/attachment.htm>
More information about the debian-security-tracker-commits
mailing list