[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Nov 16 20:29:28 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a5aa3676 by Salvatore Bonaccorso at 2022-11-16T21:29:03+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -67,15 +67,15 @@ CVE-2022-4017
CVE-2022-4016
RESERVED
CVE-2022-4015 (A vulnerability, which was classified as critical, was found in Sports ...)
- TODO: check
+ NOT-FOR-US: Sports Club Management System
CVE-2022-4014 (A vulnerability, which was classified as problematic, has been found i ...)
- TODO: check
+ NOT-FOR-US: FeehiCMS
CVE-2022-4013 (A vulnerability classified as problematic was found in Hospital Manage ...)
- TODO: check
+ NOT-FOR-US: Hospital Management Center
CVE-2022-4012 (A vulnerability classified as critical has been found in Hospital Mana ...)
- TODO: check
+ NOT-FOR-US: Hospital Management Center
CVE-2022-4011 (A vulnerability was found in Simple History Plugin. It has been rated ...)
- TODO: check
+ NOT-FOR-US: Simple History Plugin
CVE-2022-43468
RESERVED
CVE-2022-41783
@@ -934,7 +934,7 @@ CVE-2022-3982
CVE-2022-3981
RESERVED
CVE-2022-3980 (An XML External Entity (XEE) vulnerability allows server-side request ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2022-37406
RESERVED
CVE-2022-45199 (Pillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL. ...)
@@ -4882,15 +4882,15 @@ CVE-2022-44075
CVE-2022-44074
RESERVED
CVE-2022-44073 (Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via ...)
- TODO: check
+ NOT-FOR-US: Zenario CMS
CVE-2022-44072
RESERVED
CVE-2022-44071 (Zenario CMS 9.3.57186 is is vulnerable to Cross Site Scripting (XSS) v ...)
- TODO: check
+ NOT-FOR-US: Zenario CMS
CVE-2022-44070 (Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via ...)
- TODO: check
+ NOT-FOR-US: Zenario CMS
CVE-2022-44069 (Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via ...)
- TODO: check
+ NOT-FOR-US: Zenario CMS
CVE-2022-44068
RESERVED
CVE-2022-44067
@@ -8805,11 +8805,11 @@ CVE-2022-43266
CVE-2022-43265 (An arbitrary file upload vulnerability in the component /pages/save_us ...)
NOT-FOR-US: Canteen Management System
CVE-2022-43264 (Arobas Music Guitar Pro for iPad and iPhone before v1.10.2 allows atta ...)
- TODO: check
+ NOT-FOR-US: Arobas Music Guitar Pro for iPad and iPhone
CVE-2022-43263 (A cross-site scripting (XSS) vulnerability in Arobas Music Guitar Pro ...)
- TODO: check
+ NOT-FOR-US: Arobas Music Guitar Pro for iPad and iPhone
CVE-2022-43262 (Human Resource Management System v1.0 was discovered to contain a SQL ...)
- TODO: check
+ NOT-FOR-US: Human Resource Management System
CVE-2022-43261
RESERVED
CVE-2022-43260 (Tenda AC18 V15.03.05.19(6318) was discovered to contain a stack overfl ...)
@@ -8821,7 +8821,7 @@ CVE-2022-43258
CVE-2022-43257
RESERVED
CVE-2022-43256 (SeaCms before v12.6 was discovered to contain a SQL injection vulnerab ...)
- TODO: check
+ NOT-FOR-US: SeaCms
CVE-2022-43255 (GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a mem ...)
- gpac <unfixed> (unimportant)
NOTE: https://github.com/gpac/gpac/issues/2285
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5aa3676282f3e7f3af2b173b1e4d078de2637a9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5aa3676282f3e7f3af2b173b1e4d078de2637a9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221116/2502dda1/attachment.htm>
More information about the debian-security-tracker-commits
mailing list