[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu May 19 09:23:26 BST 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
888022a4 by Salvatore Bonaccorso at 2022-05-19T10:22:59+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -439,15 +439,15 @@ CVE-2022-30996
 CVE-2022-30995
 	RESERVED
 CVE-2022-30994 (Cleartext transmission of sensitive information. The following product ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-30993 (Cleartext transmission of sensitive information. The following product ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-30992 (Open redirect via user-controlled query parameter. The following produ ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-30991 (HTML injection via report name. The following products are affected: A ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-30990 (Sensitive information disclosure due to insecure folder permissions. T ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-30989
 	RESERVED
 CVE-2022-30988
@@ -533,7 +533,7 @@ CVE-2022-30974 (compile in regexp.c in Artifex MuJS through 1.2.0 results in sta
 CVE-2022-1775
 	RESERVED
 CVE-2022-1774 (Exposure of Sensitive Information to an Unauthorized Actor in GitHub r ...)
-	TODO: check
+	NOT-FOR-US: jgraph/drawio
 CVE-2022-1773
 	RESERVED
 CVE-2022-1772
@@ -2854,7 +2854,7 @@ CVE-2022-30140
 CVE-2022-30139
 	RESERVED
 CVE-2022-30138 (Windows Print Spooler Elevation of Privilege Vulnerability. This CVE I ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2022-30137
 	RESERVED
 CVE-2022-30136



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/888022a43e0fc44f5b1d0534c91163701bab220e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/888022a43e0fc44f5b1d0534c91163701bab220e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220519/0963b903/attachment.htm>


More information about the debian-security-tracker-commits mailing list