[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f525912a by Salvatore Bonaccorso at 2022-05-18T22:43:42+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -518,7 +518,7 @@ CVE-2022-1769 (Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974.
 CVE-2022-1768
 	RESERVED
 CVE-2022-1767 (Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio  ...)
-	TODO: check
+	NOT-FOR-US: jgraph/drawio
 CVE-2022-1766
 	RESERVED
 CVE-2022-1765
@@ -790,7 +790,7 @@ CVE-2022-1729
 CVE-2022-1728 (Allowing long password leads to denial of service in polonel/trudesk i ...)
 	NOT-FOR-US: Trudesk
 CVE-2022-1727 (Improper Input Validation in GitHub repository jgraph/drawio prior to  ...)
-	TODO: check
+	NOT-FOR-US: jgraph/drawio
 CVE-2022-1726 (Bootstrap Tables XSS vulnerability with Table Export plug-in when expo ...)
 	TODO: check
 CVE-2022-1725 (NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.495 ...)
@@ -2947,7 +2947,7 @@ CVE-2022-30107
 CVE-2022-30106
 	RESERVED
 CVE-2022-30105 (In Belkin N300 Firmware 1.00.08, the script located at /setting_hidden ...)
-	TODO: check
+	NOT-FOR-US: Belkin
 CVE-2022-30104
 	RESERVED
 CVE-2022-30103
@@ -3680,7 +3680,7 @@ CVE-2022-29824 (In libxml2 before 2.9.14, several buffer handling functions in b
 	NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/commit/2554a2408e09f13652049e5ffb0d26196b02ebab (v2.9.14)
 	NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/commit/6c283d83eccd940bcde15634ac8c7f100e3caefd (master)
 CVE-2022-29516 (The web console of FUJITSU Network IPCOM series (IPCOM EX2 IN(3200, 35 ...)
-	TODO: check
+	NOT-FOR-US: FUJITSU
 CVE-2022-29823
 	RESERVED
 CVE-2022-29822
@@ -4283,23 +4283,23 @@ CVE-2022-29648
 CVE-2022-29647
 	RESERVED
 CVE-2022-29646 (An access control issue in TOTOLINK A3100R V4.1.2cu.5050_B20200504 and ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29645 (TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 we ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29644 (TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 we ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29643 (TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 we ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29642 (TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 we ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29641 (TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 we ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29640 (TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 we ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29639 (TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 we ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29638 (TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 we ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2022-29637
 	RESERVED
 CVE-2022-29636



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f525912abe7c4e4f0953de41a190f14e26b31f27

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f525912abe7c4e4f0953de41a190f14e26b31f27
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220518/fbee0fc7/attachment-0001.htm>