[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Tue May 3 11:14:10 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
637c3f52 by Neil Williams at 2022-05-03T11:13:44+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -348,7 +348,7 @@ CVE-2021-46790 (ntfsck in NTFS-3G through 2021.8.22 has a heap-based buffer over
 	NOTE: https://github.com/tuxera/ntfs-3g/issues/16
 	NOTE: ntfsck not included in Debian binary packages
 CVE-2022-1544 (Formula Injection/CSV Injection due to Improper Neutralization of Form ...)
-	TODO: check
+	NOT-FOR-US: yii-helpers
 CVE-2022-29967 (static_compressed_inmemory_website_callback.c in Glewlwyd through 2.6. ...)
 	- glewlwyd 2.7.0-1
 	NOTE: https://github.com/babelouest/glewlwyd/commit/e3f7245c33897bf9b3a75acfcdb8b7b93974bf11
@@ -3030,7 +3030,7 @@ CVE-2022-1302 (In the MZ Automation LibIEC61850 in versions prior to 1.5.1 an un
 CVE-2022-1301
 	RESERVED
 CVE-2022-1300 (Multiple Version of TRUMPF TruTops products expose a service function  ...)
-	TODO: check
+	NOT-FOR-US: TRUMPF TruTops
 CVE-2022-1299
 	RESERVED
 CVE-2022-1298
@@ -34977,7 +34977,7 @@ CVE-2022-20769
 CVE-2022-20768
 	RESERVED
 CVE-2022-20767 (A vulnerability in the Snort rule evaluation function of Cisco Firepow ...)
-	TODO: check
+	NOT-FOR-US: Cisco Firepower
 CVE-2022-20766
 	RESERVED
 CVE-2022-20765
@@ -34991,13 +34991,13 @@ CVE-2022-20762 (A vulnerability in the Common Execution Environment (CEE) ConfD
 CVE-2022-20761 (A vulnerability in the integrated wireless access point (AP) packet pr ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20760 (A vulnerability in the DNS inspection handler of Cisco Adaptive Securi ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20759 (A vulnerability in the web services interface for remote access VPN fe ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20758 (A vulnerability in the implementation of the Border Gateway Protocol ( ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20757 (A vulnerability in the connection handling function in Cisco Firepower ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20756 (A vulnerability in the RADIUS feature of Cisco Identity Services Engin ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20755 (Multiple vulnerabilities in the API and web-based management interface ...)
@@ -35009,35 +35009,35 @@ CVE-2022-20753
 CVE-2022-20752
 	RESERVED
 CVE-2022-20751 (A vulnerability in the Snort detection engine integration for Cisco Fi ...)
-	TODO: check
+	NOT-FOR-US: Cisco Firepower
 CVE-2022-20750 (A vulnerability in the checkpoint manager implementation of Cisco Redu ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20749 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
 	NOT-FOR-US: Cisco Small Business RV Series Routers
 CVE-2022-20748 (A vulnerability in the local malware analysis process of Cisco Firepow ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20747 (A vulnerability in the History API of Cisco SD-WAN vManage Software co ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20746 (A vulnerability in the TCP proxy functionality of Cisco Firepower Thre ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20745 (A vulnerability in the web services interface for remote access VPN fe ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20744 (A vulnerability in the input protection mechanisms of Cisco Firepower  ...)
-	TODO: check
+	NOT-FOR-US: Cisco Firepower
 CVE-2022-20743 (A vulnerability in the web management interface of Cisco Firepower Man ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20742 (A vulnerability in an IPsec VPN library of Cisco Adaptive Security App ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20741 (A vulnerability in the web-based management interface of the Network D ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20740 (A vulnerability in the web-based management interface of Cisco Firepow ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20739 (A vulnerability in the CLI of Cisco SD-WAN vManage Software could allo ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20738 (A vulnerability in the Cisco Umbrella Secure Web Gateway service could ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20737 (A vulnerability in the handler for HTTP authentication for resources a ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20736
 	RESERVED
 CVE-2022-20735 (A vulnerability in the web-based management interface of Cisco SD-WAN  ...)
@@ -35051,9 +35051,9 @@ CVE-2022-20732 (A vulnerability in the configuration file protections of Cisco V
 CVE-2022-20731 (Multiple vulnerabilities that affect Cisco Catalyst Digital Building S ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20730 (A vulnerability in the Security Intelligence feed feature of Cisco Fir ...)
-	TODO: check
+	NOT-FOR-US: Cisco Firepower
 CVE-2022-20729 (A vulnerability in CLI of Cisco Firepower Threat Defense (FTD) Softwar ...)
-	TODO: check
+	NOT-FOR-US: Cisco Firepower
 CVE-2022-20728
 	RESERVED
 CVE-2022-20727 (Multiple vulnerabilities in the Cisco IOx application hosting environm ...)
@@ -35081,7 +35081,7 @@ CVE-2022-20717 (A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Rou
 CVE-2022-20716 (A vulnerability in the CLI of Cisco SD-WAN Software could allow an aut ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20715 (A vulnerability in the remote access SSL VPN features of Cisco Adaptiv ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2022-20714 (A vulnerability in the data plane microcode of Lightspeed-Plus line ca ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20713
@@ -35258,11 +35258,11 @@ CVE-2022-20631
 CVE-2022-20630 (A vulnerability in the audit log of Cisco DNA Center could allow an au ...)
 	NOT-FOR-US: Cisco
 CVE-2022-20629 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
-	TODO: check
+	NOT-FOR-US: Cisco Firepower
 CVE-2022-20628 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
-	TODO: check
+	NOT-FOR-US: Cisco Firepower
 CVE-2022-20627 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
-	TODO: check
+	NOT-FOR-US: Cisco Firepower
 CVE-2022-20626
 	RESERVED
 CVE-2022-20625 (A vulnerability in the Cisco Discovery Protocol service of Cisco FXOS  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/637c3f522e904be1e0798eef62de8e4c409abec5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/637c3f522e904be1e0798eef62de8e4c409abec5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220503/413ccc9d/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list