[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed May 18 12:32:54 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f0129be1 by Salvatore Bonaccorso at 2022-05-18T13:32:32+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2567,11 +2567,11 @@ CVE-2022-30056
 CVE-2022-30055 (Prime95 30.7 build 9 suffers from a Buffer Overflow vulnerability that ...)
 	NOT-FOR-US: Prime95
 CVE-2022-30054 (In Covid 19 Travel Pass Management 1.0, the code parameter is vulnerab ...)
-	TODO: check
+	NOT-FOR-US: Covid 19 Travel Pass Management
 CVE-2022-30053 (In Toll Tax Management System 1.0, the id parameter appears to be vuln ...)
-	TODO: check
+	NOT-FOR-US: Toll Tax Management System
 CVE-2022-30052 (In Home Clean Service System 1.0, the password parameter is vulnerable ...)
-	TODO: check
+	NOT-FOR-US: Home Clean Service System
 CVE-2022-30051
 	RESERVED
 CVE-2022-30050 (Gnuboard 5.55 and 5.56 is vulnerable to Cross Site Scripting (XSS) via ...)
@@ -4124,9 +4124,9 @@ CVE-2022-29541
 CVE-2022-29540
 	RESERVED
 CVE-2022-29539 (resi-calltrace in RESI Gemini-Net 4.2 is affected by OS Command Inject ...)
-	TODO: check
+	NOT-FOR-US: RESI Gemini-Net
 CVE-2022-29538 (RESI Gemini-Net Web 4.2 is affected by Improper Access Control in auth ...)
-	TODO: check
+	NOT-FOR-US: RESI Gemini-Net
 CVE-2022-29537 (gp_rtp_builder_do_hevc in ietf/rtp_pck_mpeg4.c in GPAC 2.0.0 has a hea ...)
 	- gpac <unfixed>
 	[bullseye] - gpac <no-dsa> (Minor issue)
@@ -4436,9 +4436,9 @@ CVE-2022-29438
 CVE-2022-29437
 	RESERVED
 CVE-2022-29436 (Persistent Cross-Site Scripting (XSS) vulnerability in Alexander Stokm ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-29435 (Cross-Site Request Forgery (CSRF) vulnerability in Alexander Stokmann' ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-29434
 	RESERVED
 CVE-2022-29433 (Authenticated (contributor or higher role) Cross-Site Scripting (XSS)  ...)
@@ -4450,7 +4450,7 @@ CVE-2022-29431
 CVE-2022-29430
 	RESERVED
 CVE-2022-29429 (Remote Code Execution (RCE) in Alexander Stokmann's Code Snippets Exte ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-29428
 	RESERVED
 CVE-2022-29427



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0129be1fe5b257f0f160b0044e4678595923b0e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0129be1fe5b257f0f160b0044e4678595923b0e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220518/eb01dd91/attachment.htm>
