[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu May 26 09:37:30 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
49ab627a by Salvatore Bonaccorso at 2022-05-26T10:37:03+02:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3120,7 +3120,7 @@ CVE-2022-25976
 CVE-2022-1670 (When generating a user invitation code in Octopus Server, the validity ...)
 	NOT-FOR-US: Octopus Server
 CVE-2022-1669 (A buffer overflow vulnerability has been detected in the firewall func ...)
-	TODO: check
+	NOT-FOR-US: Circutor
 CVE-2022-1668
 	RESERVED
 CVE-2022-1667
@@ -5742,9 +5742,9 @@ CVE-2022-29653
 CVE-2022-29652 (Online Sports Complex Booking System 1.0 is vulnerable to SQL Injectio ...)
 	NOT-FOR-US: Sourcecodester Online Sports Complex Booking System
 CVE-2022-29651 (An arbitrary file upload vulnerability in the Select Image function of ...)
-	TODO: check
+	NOT-FOR-US: Online Food Ordering System
 CVE-2022-29650 (Online Food Ordering System v1.0 was discovered to contain a SQL injec ...)
-	TODO: check
+	NOT-FOR-US: Online Food Ordering System
 CVE-2022-29649
 	RESERVED
 CVE-2022-29648
@@ -6453,7 +6453,7 @@ CVE-2022-29410 (Authenticated SQL Injection (SQLi) vulnerability in Mufeng's Her
 CVE-2022-29409
 	RESERVED
 CVE-2022-29408 (Persistent Cross-Site Scripting (XSS) vulnerability in Vsourz Digital' ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-29407
 	RESERVED
 CVE-2022-29406
@@ -6492,7 +6492,7 @@ CVE-2022-1381 (global heap buffer overflow in skip_range in GitHub repository vi
 CVE-2022-29403
 	RESERVED
 CVE-2022-29402 (TP-Link TL-WR840N EU v6.20 was discovered to contain insecure protecti ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2022-29401
 	RESERVED
 CVE-2022-29400
@@ -6536,9 +6536,9 @@ CVE-2022-29382
 CVE-2022-29381
 	RESERVED
 CVE-2022-29380 (Academy-LMS v4.3 was discovered to contain a stored cross-site scripti ...)
-	TODO: check
+	NOT-FOR-US: Academy-LMS
 CVE-2022-29379 (Nginx NJS v0.7.3 was discovered to contain a stack overflow in the fun ...)
-	TODO: check
+	NOT-FOR-US: njs
 CVE-2022-29378
 	RESERVED
 CVE-2022-29377 (Totolink A3600R V4.1.2cu.5182_B20201102 was discovered to contain a st ...)
@@ -6572,13 +6572,13 @@ CVE-2022-29364
 CVE-2022-29363 (Phpok v6.1 was discovered to contain a deserialization vulnerability v ...)
 	NOT-FOR-US: qinggan phpok
 CVE-2022-29362 (A cross-site scripting (XSS) vulnerability in /navigation/create?Paren ...)
-	TODO: check
+	NOT-FOR-US: ZKEACMS
 CVE-2022-29361 (Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0 and below ...)
 	TODO: check
 CVE-2022-29360
 	RESERVED
 CVE-2022-29359 (A stored cross-site scripting (XSS) vulnerability in /scas/?page=clubs ...)
-	TODO: check
+	NOT-FOR-US: School Club Application System
 CVE-2022-29358 (epub2txt2 v2.04 was discovered to contain an integer overflow via the  ...)
 	TODO: check
 CVE-2022-29357
@@ -6904,11 +6904,11 @@ CVE-2022-29255
 CVE-2022-29254
 	RESERVED
 CVE-2022-29253 (XWiki Platform is a generic wiki platform offering runtime services fo ...)
-	TODO: check
+	NOT-FOR-US: XWiki
 CVE-2022-29252 (XWiki Platform Wiki UI Main Wiki is a package for managing subwikis. S ...)
-	TODO: check
+	NOT-FOR-US: XWiki
 CVE-2022-29251 (XWiki Platform Flamingo Theme UI is a tool that allows customization a ...)
-	TODO: check
+	NOT-FOR-US: XWiki
 CVE-2022-29250
 	RESERVED
 CVE-2022-29249 (JavaEZ is a library that adds new functions to make Java easier. A wea ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49ab627a0d5433dfed9d38a187167a767a9a712a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49ab627a0d5433dfed9d38a187167a767a9a712a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220526/d81f57df/attachment.htm>

More information about the debian-security-tracker-commits mailing list