[Git][security-tracker-team/security-tracker][master] Process some NFUs
Neil Williams (@codehelp)
codehelp at debian.org
Fri May 6 13:08:06 BST 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9c634484 by Neil Williams at 2022-05-06T13:07:51+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10143,7 +10143,7 @@ CVE-2022-0884 (The Profile Builder WordPress plugin before 3.6.8 does not saniti
CVE-2022-0883
RESERVED
CVE-2022-0882 (A bug exists where an attacker can read the kernel log through exposed ...)
- TODO: check
+ NOT-FOR-US: Google fuchsia
CVE-2022-0881 (Insecure Storage of Sensitive Information in GitHub repository chocobo ...)
- peertube <itp> (bug #950821)
CVE-2022-26847 (SPIP before 3.2.14 and 4.x before 4.0.5 allows unauthenticated access ...)
@@ -30890,7 +30890,7 @@ CVE-2022-21745
CVE-2022-21744
RESERVED
CVE-2022-21743 (In ion, there is a possible use after free due to an integer overflow. ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2021-44230 (PortSwigger Burp Suite Enterprise Edition before 2021.11 on Windows ha ...)
NOT-FOR-US: Burp Suite (different from src:burp)
CVE-2021-44229
@@ -39247,61 +39247,61 @@ CVE-2021-42330 (The “Teacher Edit” function of ShinHer StudyOnline S
CVE-2021-42329 (The “List_Add” function of message board of ShinHer StudyO ...)
NOT-FOR-US: ShinHer StudyOnline System
CVE-2022-20111 (In ion, there is a possible use after free due to incorrect error hand ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20110 (In ion, there is a possible use after free due to a race condition. Th ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20109 (In ion, there is a possible use after free due to improper update of r ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20108 (In voice service, there is a possible out of bounds write due to a sta ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20107 (In subtitle service, there is a possible application crash due to an i ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20106 (In MM service, there is a possible out of bounds write due to a heap-b ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20105 (In MM service, there is a possible out of bounds write due to a stack- ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20104 (In aee daemon, there is a possible information disclosure due to impro ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20103 (In aee daemon, there is a possible information disclosure due to symbo ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20102 (In aee daemon, there is a possible information disclosure due to a mis ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20101 (In aee daemon, there is a possible information disclosure due to a pat ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20100 (In aee daemon, there is a possible information disclosure due to a mis ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20099 (In aee daemon, there is a possible out of bounds write due to improper ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20098 (In aee daemon, there is a possible information disclosure due to a mis ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20097 (In aee daemon, there is a possible information disclosure due to a rac ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20096 (In camera, there is a possible information disclosure due to uninitial ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20095 (In imgsensor, there is a possible out of bounds write due to a missing ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20094 (In imgsensor, there is a possible out of bounds write due to an incorr ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20093 (In telephony, there is a possible way to disable receiving SMS message ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20092 (In alac decoder, there is a possible out of bounds read due to a missi ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20091 (In aee driver, there is a possible use after free due to a race condit ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20090 (In aee driver, there is a possible use after free due to a race condit ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20089 (In aee driver, there is a possible memory corruption due to active deb ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20088 (In aee driver, there is a possible reference count mistake due to inco ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20087 (In ccu, there is a possible out of bounds write due to a missing bound ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20086
RESERVED
CVE-2022-20085 (In netdiag, there is a possible symbolic link following due to an impr ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20084 (In telephony, there is a possible way to disable receiving emergency b ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20083
RESERVED
CVE-2022-20082
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c63448469593a35fba98f3e393f2aa0750491b0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c63448469593a35fba98f3e393f2aa0750491b0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220506/7e91f824/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list