[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Fri May 27 12:27:57 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4108bdf6 by Neil Williams at 2022-05-27T12:27:30+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13933,7 +13933,7 @@ CVE-2022-26867
 CVE-2022-26866
 	RESERVED
 CVE-2022-26865 (Dell Support Assist OS Recovery versions before 5.5.2 contain an Authe ...)
-	TODO: check
+	NOT-FOR-US: Dell SupportAssist
 CVE-2022-26864
 	RESERVED
 CVE-2022-26863
@@ -13949,7 +13949,7 @@ CVE-2022-26859
 CVE-2022-26858
 	RESERVED
 CVE-2022-26857 (Dell OpenManage Enterprise Versions 3.8.3 and prior contain an imprope ...)
-	TODO: check
+	NOT-FOR-US: Dell OpenManage Enterprise
 CVE-2022-26856 (Dell EMC Repository Manager version 3.4.0 contains a plain-text passwo ...)
 	NOT-FOR-US: EMC
 CVE-2022-26855 (Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contains an incorrect d ...)
@@ -20801,7 +20801,7 @@ CVE-2022-24424 (Dell EMC AppSync versions from 3.9 to 4.3 contain a path travers
 CVE-2022-24423 (Dell EMC iDRAC8 versions 2.81.81 and earlier contain a denial of servi ...)
 	NOT-FOR-US: EMC
 CVE-2022-24422 (Dell iDRAC9 versions 5.00.00.00 and later but prior to 5.10.10.00, con ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2022-24421 (Dell BIOS contains an improper input validation vulnerability. A local ...)
 	NOT-FOR-US: Dell
 CVE-2022-24420 (Dell BIOS contains an improper input validation vulnerability. A local ...)
@@ -20809,9 +20809,9 @@ CVE-2022-24420 (Dell BIOS contains an improper input validation vulnerability. A
 CVE-2022-24419 (Dell BIOS contains an improper input validation vulnerability. A local ...)
 	NOT-FOR-US: Dell
 CVE-2022-24418 (Dell BIOS contains an improper input validation vulnerability. A local ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2022-24417 (Dell BIOS contains an improper input validation vulnerability. A local ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2022-24416 (Dell BIOS contains an improper input validation vulnerability. A local ...)
 	NOT-FOR-US: Dell
 CVE-2022-24415 (Dell BIOS contains an improper input validation vulnerability. A local ...)
@@ -27626,15 +27626,15 @@ CVE-2021-4200 (A Improper Privilege Management vulnerability in SUSE Rancher all
 CVE-2022-22677
 	RESERVED
 CVE-2022-22676 (An event handler validation issue in the XPC Services API was addresse ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2022-22675 (An out-of-bounds write issue was addressed with improved bounds checki ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2022-22674 (An out-of-bounds read issue existed that led to the disclosure of kern ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2022-22673 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2022-22672 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2022-22671 (An authentication issue was addressed with improved state management.  ...)
 	NOT-FOR-US: Apple
 CVE-2022-22670 (An access issue was addressed with improved access restrictions. This  ...)
@@ -27652,9 +27652,9 @@ CVE-2022-22665 (A logic issue was addressed with improved validation. This issue
 CVE-2022-22664 (An out-of-bounds read was addressed with improved bounds checking. Thi ...)
 	NOT-FOR-US: Apple
 CVE-2022-22663 (This issue was addressed with improved checks to prevent unauthorized  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2022-22662 (A cookie management issue was addressed with improved state management ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2022-22661 (A type confusion issue was addressed with improved state handling. Thi ...)
 	NOT-FOR-US: Apple
 CVE-2022-22660 (This issue was addressed with a new entitlement. This issue is fixed i ...)
@@ -27770,7 +27770,7 @@ CVE-2022-22618 (This issue was addressed with improved checks. This issue is fix
 CVE-2022-22617 (A logic issue was addressed with improved state management. This issue ...)
 	NOT-FOR-US: Apple
 CVE-2022-22616 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2022-22615 (A use after free issue was addressed with improved memory management.  ...)
 	NOT-FOR-US: Apple
 CVE-2022-22614 (A use after free issue was addressed with improved memory management.  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4108bdf6fe924a4749a5356ead23c2e861f78dd2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4108bdf6fe924a4749a5356ead23c2e861f78dd2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220527/36aaa44e/attachment.htm>

More information about the debian-security-tracker-commits mailing list