[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu May 26 21:43:48 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fd85fdff by Salvatore Bonaccorso at 2022-05-26T22:41:38+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,7 +41,7 @@ CVE-2022-1895
 CVE-2022-1894
 	RESERVED
 CVE-2021-4232 (A vulnerability classified as problematic has been found in Zoo Manage ...)
-	TODO: check
+	NOT-FOR-US: Zoo Management System
 CVE-2022-31733
 	RESERVED
 CVE-2022-31732
@@ -1278,7 +1278,7 @@ CVE-2022-31267 (Gitblit 1.9.2 allows privilege escalation via the Config User Se
 CVE-2022-31266
 	RESERVED
 CVE-2022-31265 (The replay feature in the client in Wargaming World of Warships 0.11.4 ...)
-	TODO: check
+	NOT-FOR-US: client in Wargaming World of Warships
 CVE-2022-31264 (Solana solana_rbpf before 0.2.29 has an addition integer overflow via  ...)
 	NOT-FOR-US: Solana rBPF
 CVE-2022-31263 (app/models/user.rb in Mastodon before 3.5.0 allows a bypass of e-mail  ...)
@@ -3363,7 +3363,7 @@ CVE-2022-30518 (ChatBot Application with a Suggestion Feature 1.0 was discovered
 CVE-2022-30517
 	RESERVED
 CVE-2022-30516 (In Hospital-Management-System v1.0, the editid parameter in the doctor ...)
-	TODO: check
+	NOT-FOR-US: Hospital-Management-System
 CVE-2022-30515
 	RESERVED
 CVE-2022-30514
@@ -3379,7 +3379,7 @@ CVE-2022-30510
 CVE-2022-30509
 	RESERVED
 CVE-2022-30508 (DedeCMS v5.7.93 was discovered to contain arbitrary file deletion vuln ...)
-	TODO: check
+	NOT-FOR-US: DedeCMS
 CVE-2022-30507
 	RESERVED
 CVE-2022-30506
@@ -3395,7 +3395,7 @@ CVE-2022-30502
 CVE-2022-30501
 	RESERVED
 CVE-2022-30500 (Jfinal cms 5.1.0 is vulnerable to SQL Injection. ...)
-	TODO: check
+	NOT-FOR-US: Jfinal cms
 CVE-2022-30499
 	RESERVED
 CVE-2022-30498
@@ -3405,11 +3405,11 @@ CVE-2022-30497
 CVE-2022-30496
 	RESERVED
 CVE-2022-30495 (In oretnom23 Automotive Shop Management System v1.0, the name id param ...)
-	TODO: check
+	NOT-FOR-US: oretnom23 Automotive Shop Management System
 CVE-2022-30494 (In oretnom23 Automotive Shop Management System v1.0, the first and las ...)
-	TODO: check
+	NOT-FOR-US: oretnom23 Automotive Shop Management System
 CVE-2022-30493 (In oretnom23 Automotive Shop Management System v1.0, the product id pa ...)
-	TODO: check
+	NOT-FOR-US: oretnom23 Automotive Shop Management System
 CVE-2022-30492
 	RESERVED
 CVE-2022-30491
@@ -5665,9 +5665,9 @@ CVE-2022-29723
 CVE-2022-29722
 	RESERVED
 CVE-2022-29721 (74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-29720 (74cmsSE v3.5.1 was discovered to contain an arbitrary file read vulner ...)
-	TODO: check
+	NOT-FOR-US: 74cmsSE
 CVE-2022-29719
 	RESERVED
 CVE-2022-29718
@@ -5729,25 +5729,25 @@ CVE-2022-29691
 CVE-2022-29690
 	RESERVED
 CVE-2022-29689 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29688 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29687 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29686 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29685 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29684 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29683 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29682 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29681 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29680 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29679
 	RESERVED
 CVE-2022-29678
@@ -5755,7 +5755,7 @@ CVE-2022-29678
 CVE-2022-29677
 	RESERVED
 CVE-2022-29676 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29675
 	RESERVED
 CVE-2022-29674
@@ -5767,27 +5767,27 @@ CVE-2022-29672
 CVE-2022-29671
 	RESERVED
 CVE-2022-29670 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29669 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29668
 	RESERVED
 CVE-2022-29667 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29666 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29665 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29664 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29663 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29662 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29661 (CSCMS Music Portal System v4.2 was discovered to contain a blind SQL i ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29660 (CSCMS Music Portal System v4.2 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: CSCMS Music Portal System
 CVE-2022-29659
 	RESERVED
 CVE-2022-29658



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fd85fdff26f98cf5eb2ae6795ba8ff0c8b5d6708

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fd85fdff26f98cf5eb2ae6795ba8ff0c8b5d6708
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220526/04346643/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list