[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 15 20:39:23 GMT 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
20338cb1 by Salvatore Bonaccorso at 2022-11-15T21:38:40+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23,9 +23,9 @@ CVE-2022-4000
 CVE-2022-3999
 	RESERVED
 CVE-2022-3998 (A vulnerability, which was classified as critical, was found in Monika ...)
-	TODO: check
+	NOT-FOR-US: MonikaBrzica scm
 CVE-2022-3997 (A vulnerability, which was classified as critical, has been found in M ...)
-	TODO: check
+	NOT-FOR-US: MonikaBrzica scm
 CVE-2022-3996
 	RESERVED
 CVE-2022-45435
@@ -994,7 +994,7 @@ CVE-2022-45147
 CVE-2022-3959 (A vulnerability, which was classified as problematic, has been found i ...)
 	NOT-FOR-US: Drogon
 CVE-2022-3958 (Cross-site Scripting (XSS) vulnerability in BlueSpiceUserSidebar exten ...)
-	TODO: check
+	NOT-FOR-US: BlueSpiceUserSidebar extension of BlueSpice
 CVE-2022-3957 (A vulnerability classified as problematic was found in GPAC. Affected  ...)
 	- gpac <unfixed> (unimportant)
 	NOTE: https://github.com/gpac/gpac/commit/2191e66aa7df750e8ef01781b1930bea87b713bb
@@ -1340,11 +1340,11 @@ CVE-2022-3897
 CVE-2022-3896
 	RESERVED
 CVE-2022-3895 (Some UI elements of the Common User Interface Component are not proper ...)
-	TODO: check
+	NOT-FOR-US: BlueSpice
 CVE-2022-3894
 	RESERVED
 CVE-2022-3893 (Cross-site Scripting (XSS) vulnerability in BlueSpiceCustomMenu extens ...)
-	TODO: check
+	NOT-FOR-US: BlueSpice
 CVE-2022-3892
 	RESERVED
 CVE-2022-3891
@@ -5012,7 +5012,7 @@ CVE-2022-3739
 CVE-2022-3738
 	RESERVED
 CVE-2022-3737 (In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 me ...)
-	TODO: check
+	NOT-FOR-US: PHOENIX
 CVE-2023-20851
 	RESERVED
 CVE-2023-20850
@@ -7213,7 +7213,7 @@ CVE-2022-43782
 CVE-2022-43781
 	RESERVED
 CVE-2022-43780 (Certain HP ENVY, OfficeJet, and DeskJet printers may be vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2022-43779
 	RESERVED
 CVE-2022-43778



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/20338cb17f3edb9c5a15b4bb4fd970fb3c67e2f7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/20338cb17f3edb9c5a15b4bb4fd970fb3c67e2f7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221115/4a4aa844/attachment.htm>


More information about the debian-security-tracker-commits mailing list