[Git][security-tracker-team/security-tracker][master] Process soem NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Nov 7 20:39:09 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
758d6dd5 by Salvatore Bonaccorso at 2022-11-07T21:38:43+01:00
Process soem NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -645,13 +645,13 @@ CVE-2022-44751
 CVE-2022-44750
 	RESERVED
 CVE-2022-44747 (Local privilege escalation due to improper soft link handling. The fol ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-44746 (Sensitive information disclosure due to insecure folder permissions. T ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-44745 (Sensitive information leak through log files. The following products a ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-44744 (Local privilege escalation due to DLL hijacking vulnerability. The fol ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-44743
 	RESERVED
 CVE-2022-44742
@@ -673,9 +673,9 @@ CVE-2022-44735
 CVE-2022-44734
 	RESERVED
 CVE-2022-44733 (Local privilege escalation due to insecure folder permissions. The fol ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-44732 (Local privilege escalation due to insecure folder permissions. The fol ...)
-	TODO: check
+	NOT-FOR-US: Acronis
 CVE-2022-3867
 	RESERVED
 CVE-2022-3866
@@ -3408,19 +3408,19 @@ CVE-2022-44056
 CVE-2022-44055
 	RESERVED
 CVE-2022-44054 (The d8s-xml for python, as distributed on PyPI, included a potential c ...)
-	TODO: check
+	NOT-FOR-US: d8s-xml
 CVE-2022-44053 (The d8s-networking for python, as distributed on PyPI, included a pote ...)
-	TODO: check
+	NOT-FOR-US: d8s-networking
 CVE-2022-44052 (The d8s-dates for python, as distributed on PyPI, included a potential ...)
-	TODO: check
+	NOT-FOR-US: d8s-dates
 CVE-2022-44051 (The d8s-stats for python, as distributed on PyPI, included a potential ...)
-	TODO: check
+	NOT-FOR-US: d8s-stats
 CVE-2022-44050 (The d8s-networking for python, as distributed on PyPI, included a pote ...)
-	TODO: check
+	NOT-FOR-US: d8s-networking
 CVE-2022-44049 (The d8s-python for python, as distributed on PyPI, included a potentia ...)
-	TODO: check
+	NOT-FOR-US: d8s-python
 CVE-2022-44048 (The d8s-urls for python, as distributed on PyPI, included a potential  ...)
-	TODO: check
+	NOT-FOR-US: d8s-urls
 CVE-2022-44047
 	RESERVED
 CVE-2022-44046
@@ -7104,11 +7104,11 @@ CVE-2022-43354 (Sanitization Management System v1.0 was discovered to contain a
 CVE-2022-43353 (Sanitization Management System v1.0 was discovered to contain a SQL in ...)
 	NOT-FOR-US: Sanitization Management System
 CVE-2022-43352 (Sanitization Management System v1.0 was discovered to contain a SQL in ...)
-	TODO: check
+	NOT-FOR-US: Sanitization Management System
 CVE-2022-43351 (Sanitization Management System v1.0 was discovered to contain an arbit ...)
-	TODO: check
+	NOT-FOR-US: Sanitization Management System
 CVE-2022-43350 (Sanitization Management System v1.0 was discovered to contain a SQL in ...)
-	TODO: check
+	NOT-FOR-US: Sanitization Management System
 CVE-2022-43349
 	RESERVED
 CVE-2022-43348
@@ -7170,11 +7170,11 @@ CVE-2022-43321
 CVE-2022-43320
 	RESERVED
 CVE-2022-43319 (An information disclosure vulnerability in the component vcs/downloadF ...)
-	TODO: check
+	NOT-FOR-US: Simple E-Learning System
 CVE-2022-43318 (Human Resource Management System v1.0 was discovered to contain a SQL  ...)
-	TODO: check
+	NOT-FOR-US: Human Resource Management System
 CVE-2022-43317 (A cross-site scripting (XSS) vulnerability in /hrm/index.php?msg of Hu ...)
-	TODO: check
+	NOT-FOR-US: Human Resource Management System
 CVE-2022-43316
 	RESERVED
 CVE-2022-43315
@@ -7196,13 +7196,13 @@ CVE-2022-43308
 CVE-2022-43307
 	RESERVED
 CVE-2022-43306 (The d8s-timer for python, as distributed on PyPI, included a potential ...)
-	TODO: check
+	NOT-FOR-US: d8s-timer
 CVE-2022-43305 (The d8s-python for python, as distributed on PyPI, included a potentia ...)
-	TODO: check
+	NOT-FOR-US: d8s-python
 CVE-2022-43304 (The d8s-timer for python, as distributed on PyPI, included a potential ...)
-	TODO: check
+	NOT-FOR-US: d8s-timer
 CVE-2022-43303 (The d8s-strings for python, as distributed on PyPI, included a potenti ...)
-	TODO: check
+	NOT-FOR-US: d8s-strings
 CVE-2022-43302
 	RESERVED
 CVE-2022-43301
@@ -7885,7 +7885,7 @@ CVE-2022-42992 (Multiple stored cross-site scripting (XSS) vulnerabilities in Tr
 CVE-2022-42991 (A stored cross-site scripting (XSS) vulnerability in Simple Online Pub ...)
 	NOT-FOR-US: Simple Online Public Access Catalog
 CVE-2022-42990 (Food Ordering Management System v1.0 was discovered to contain a SQL i ...)
-	TODO: check
+	NOT-FOR-US: Food Ordering Management System
 CVE-2022-42989
 	RESERVED
 CVE-2022-42988
@@ -8103,9 +8103,9 @@ CVE-2022-42958
 CVE-2022-42957
 	RESERVED
 CVE-2022-42956 (The PassWork extension 5.0.9 for Chrome and other browsers allows an a ...)
-	TODO: check
+	NOT-FOR-US: PassWork extension for Chrome
 CVE-2022-42955 (The PassWork extension 5.0.9 for Chrome and other browsers allows an a ...)
-	TODO: check
+	NOT-FOR-US: PassWork extension for Chrome
 CVE-2022-42954
 	RESERVED
 CVE-2022-42953



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/758d6dd5ca3ac04b3bc64c09e4a6d8b69fe47ba6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/758d6dd5ca3ac04b3bc64c09e4a6d8b69fe47ba6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221107/8f4f8d7e/attachment.htm>

More information about the debian-security-tracker-commits mailing list