[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Tue May 3 11:32:42 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d2bd6630 by Neil Williams at 2022-05-03T11:32:12+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11717,7 +11717,7 @@ CVE-2022-23811
 CVE-2022-22984
 	RESERVED
 CVE-2022-22143 (The package convict before 6.2.2 are vulnerable to Prototype Pollution ...)
-	TODO: check
+	NOT-FOR-US: Node convict
 CVE-2022-22138
 	RESERVED
 CVE-2022-21811
@@ -11737,7 +11737,7 @@ CVE-2022-21232
 CVE-2022-21231
 	RESERVED
 CVE-2022-21230 (This affects all versions of package org.nanohttpd:nanohttpd. Whenever ...)
-	TODO: check
+	NOT-FOR-US: NanoHTTPD Java
 CVE-2022-21227 (The package sqlite3 before 5.0.3 are vulnerable to Denial of Service ( ...)
 	- node-sqlite3 5.0.6+ds1-1
 	[bullseye] - node-sqlite3 <no-dsa> (Minor issue)
@@ -11775,15 +11775,15 @@ CVE-2022-21186
 CVE-2022-21169
 	RESERVED
 CVE-2022-21167 (All versions of package masuit.tools.core are vulnerable to Arbitrary  ...)
-	TODO: check
+	NOT-FOR-US: masuit.tools
 CVE-2022-21165
 	RESERVED
 CVE-2022-21164 (The package node-lmdb before 0.9.7 are vulnerable to Denial of Service ...)
 	NOT-FOR-US: Node lmdb
 CVE-2022-21149 (The package s-cart/s-cart before 6.9; the package s-cart/core before 6 ...)
-	TODO: check
+	NOT-FOR-US: s-cart/core
 CVE-2022-21144 (This affects all versions of package libxmljs. When invoking the libxm ...)
-	TODO: check
+	NOT-FOR-US: Node libxmljs
 CVE-2022-21129
 	RESERVED
 CVE-2022-21126



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2bd66303a46803910728c266948ae49a7d54ca3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2bd66303a46803910728c266948ae49a7d54ca3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220503/a0b2e9dd/attachment.htm>

More information about the debian-security-tracker-commits mailing list