[Git][security-tracker-team/security-tracker][master] Associate three older NFUs with the itp'ed entry for mastodon

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
432c5851 by Salvatore Bonaccorso at 2022-05-26T09:37:42+02:00
Associate three older NFUs with the itp'ed entry for mastodon

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20783,7 +20783,7 @@ CVE-2022-0473 (OTRS administrators can configure dynamic field and inject malici
 CVE-2022-24308 (Automox Agent prior to version 37 on Windows and Linux and Version 36  ...)
 	NOT-FOR-US: Automox
 CVE-2022-24307 (Mastodon before 3.3.2 and 3.4.x before 3.4.6 has incorrect access cont ...)
-	NOT-FOR-US: Mastodon
+	- mastodon <itp> (bug #859741)
 CVE-2022-24306 (Zoho ManageEngine SharePoint Manager Plus before 4329 allows account t ...)
 	NOT-FOR-US: Zoho ManageEngine
 CVE-2022-24305 (Zoho ManageEngine SharePoint Manager Plus before 4329 is vulnerable to ...)
@@ -21092,7 +21092,7 @@ CVE-2022-0433 (A NULL pointer dereference flaw was found in the Linux kernel's B
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2048259
 	NOTE: Fixed by: https://git.kernel.org/linus/3ccdcee28415c4226de05438b4d89eb5514edf73 (5.17-rc1)
 CVE-2022-0432 (Prototype Pollution in GitHub repository mastodon/mastodon prior to 3. ...)
-	NOT-FOR-US: Mastodon
+	- mastodon <itp> (bug #859741)
 CVE-2022-0431 (The Insights from Google PageSpeed WordPress plugin before 4.0.4 does  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-0430 (Exposure of Sensitive Information to an Unauthorized Actor in GitHub r ...)
@@ -189425,7 +189425,7 @@ CVE-2019-16683 (An issue was discovered in the image-manager in Xoops 2.5.10. Wh
 CVE-2019-16682 (The url_redirect (aka URL redirect) extension through 1.2.1 for TYPO3  ...)
 	NOT-FOR-US: TYPO3 extension
 CVE-2018-21018 (Mastodon before 2.6.3 mishandles timeouts of incompletely established  ...)
-	NOT-FOR-US: Mastodon
+	- mastodon <itp> (bug #859741)
 CVE-2019-16681 (The Traveloka application 3.14.0 for Android exports com.traveloka.and ...)
 	NOT-FOR-US: Traveloka
 CVE-2019-16680 (An issue was discovered in GNOME file-roller before 3.29.91. It allows ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/432c58512846bb208dcd7b1f1817f51c67f268ec

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/432c58512846bb208dcd7b1f1817f51c67f268ec
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220526/cd2e2de2/attachment.htm>