[Git][security-tracker-team/security-tracker][master] Process some NFUs
Neil Williams (@codehelp)
codehelp at debian.org
Wed May 11 11:45:55 BST 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
63d82ad3 by Neil Williams at 2022-05-11T11:45:35+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -37322,7 +37322,7 @@ CVE-2021-3903 (vim is vulnerable to Heap-based Buffer Overflow ...)
CVE-2020-36503 (The Connections Business Directory WordPress plugin before 9.7 does no ...)
NOT-FOR-US: WordPress plugin
CVE-2021-43010 (In Safedog Apache v4.0.30255, attackers can bypass this product for SQ ...)
- TODO: check
+ NOT-FOR-US: Safedog
CVE-2021-43009 (A Cross Site Scripting (XSS) vulnerability exists in OpServices OpMon ...)
NOT-FOR-US: OpServices OpMon
CVE-2021-43008 (Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in ...)
@@ -40914,13 +40914,14 @@ CVE-2022-20008 (In mmc_blk_read_single of block.c, there is a possible way to re
NOTE: https://source.android.com/security/bulletin/2022-05-01
NOTE: https://git.kernel.org/linus/54309fde1a352ad2674ebba004a79f7d20b9f037 (5.17-rc5)
CVE-2022-20007 (In startActivityForAttachedApplicationIfNeeded of RootWindowContainer. ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2022-20006 (In several functions of KeyguardServiceWrapper.java and related files, ...)
- TODO: check
+ NOT-FOR-US: Android
+ NOTE: No mention of this CVE in the linked Android bulletin
CVE-2022-20005 (In validateApkInstallLocked of PackageInstallerSession.java, there is ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2022-20004 (In checkSlicePermission of SliceManagerService.java, it is possible to ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2022-20003
RESERVED
CVE-2022-20002 (In incfs, there is a possible way of mounting on arbitrary paths due t ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/63d82ad3ba40b73110e1938f9cf7a4e607e551f6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/63d82ad3ba40b73110e1938f9cf7a4e607e551f6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220511/28aa02eb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list