[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sat Nov 5 18:49:55 GMT 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
87f14581 by Moritz Mühlenhoff at 2022-11-05T19:49:21+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5320,8 +5320,10 @@ CVE-2022-43755
RESERVED
CVE-2022-43754
RESERVED
+ NOT-FOR-US: Uyuni
CVE-2022-43753
RESERVED
+ NOT-FOR-US: Uyuni
CVE-2022-43752 (** UNSUPPORTED WHEN ASSIGNED ** Oracle Solaris version 10 1/13, when u ...)
NOT-FOR-US: Oracle Solaris
CVE-2022-43751
@@ -20670,8 +20672,10 @@ CVE-2022-37867
RESERVED
CVE-2022-37866
RESERVED
+ NOT-FOR-US: Apache Ivy
CVE-2022-37865
RESERVED
+ NOT-FOR-US: Apache Ivy
CVE-2022-37864 (A vulnerability has been identified in Solid Edge (All Versions < S ...)
NOT-FOR-US: Solid Edge
CVE-2022-35733 (Missing authentication for critical function vulnerability in UNIMO Te ...)
@@ -32004,7 +32008,7 @@ CVE-2022-33686 (Exposure of Sensitive Information in GsmAlarmManager prior to SM
CVE-2022-33685 (Unprotected dynamic receiver in Wearable Manager Service prior to SMR ...)
NOT-FOR-US: Samsung
CVE-2022-33684 (The Apache Pulsar C++ Client does not verify peer TLS certificates whe ...)
- TODO: check
+ NOT-FOR-US: Apache Pulsar
CVE-2022-33683 (Apache Pulsar Brokers and Proxies create an internal Pulsar Admin Clie ...)
NOT-FOR-US: Apache Pulsar
CVE-2022-33682 (TLS hostname verification cannot be enabled in the Pulsar Broker's Jav ...)
@@ -35380,7 +35384,7 @@ CVE-2022-32296 (The Linux kernel before 5.17.9 allows TCP servers to identify cl
[bullseye] - linux 5.10.127-1
NOTE: https://git.kernel.org/linus/4c2c8f03a5ab7cb04ec64724d7d176d00bcc91e5 (5.18-rc6)
CVE-2022-32287 (A relative path traversal vulnerability in a FileUtil class used by th ...)
- TODO: check
+ NOT-FOR-US: Apache UIMA
CVE-2022-32286 (A vulnerability has been identified in Mendix SAML Module (Mendix 7 co ...)
NOT-FOR-US: Siemens
CVE-2022-32285 (A vulnerability has been identified in Mendix SAML Module (Mendix 7 co ...)
@@ -38487,6 +38491,7 @@ CVE-2022-31256 (A Improper Link Resolution Before File Access ('Link Following')
TODO: check
CVE-2022-31255
RESERVED
+ NOT-FOR-US: Uyuni
CVE-2022-31254
RESERVED
CVE-2022-31253
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/87f14581202f083e35e34790ba2e834e07cdba9b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/87f14581202f083e35e34790ba2e834e07cdba9b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221105/5c08e2cd/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list