[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 22 08:36:50 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
eaa8125c by Salvatore Bonaccorso at 2022-11-22T09:36:14+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13,7 +13,7 @@ CVE-2022-4113
 CVE-2022-4112
 	RESERVED
 CVE-2022-4111 (What happens if a bot net starts uploading 100MB files from 100 machin ...)
-	TODO: check
+	NOT-FOR-US: ToolJet
 CVE-2022-4110
 	RESERVED
 CVE-2022-4109
@@ -2870,15 +2870,15 @@ CVE-2022-44790
 CVE-2022-44789
 	RESERVED
 CVE-2022-44788 (An issue was discovered in Appalti & Contratti 9.12.2. It allows S ...)
-	TODO: check
+	NOT-FOR-US: Appalti & Contratti
 CVE-2022-44787 (An issue was discovered in Appalti & Contratti 9.12.2. The web app ...)
-	TODO: check
+	NOT-FOR-US: Appalti & Contratti
 CVE-2022-44786 (An issue was discovered in Appalti & Contratti 9.12.2. The target  ...)
-	TODO: check
+	NOT-FOR-US: Appalti & Contratti
 CVE-2022-44785 (An issue was discovered in Appalti & Contratti 9.12.2. The target  ...)
-	TODO: check
+	NOT-FOR-US: Appalti & Contratti
 CVE-2022-44784 (An issue was discovered in Appalti & Contratti 9.12.2. The target  ...)
-	TODO: check
+	NOT-FOR-US: Appalti & Contratti
 CVE-2022-44619
 	RESERVED
 CVE-2022-44610
@@ -8354,11 +8354,11 @@ CVE-2022-43711
 CVE-2022-43710
 	RESERVED
 CVE-2022-43709 (MyBB 1.8.31 has a SQL injection vulnerability in the Admin CP's Users  ...)
-	TODO: check
+	NOT-FOR-US: MyBB
 CVE-2022-43708 (MyBB 1.8.31 has a (issue 2 of 2) cross-site scripting (XSS) vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: MyBB
 CVE-2022-43707 (MyBB 1.8.31 has a Cross-site scripting (XSS) vulnerability in the visu ...)
-	TODO: check
+	NOT-FOR-US: MyBB
 CVE-2022-43706
 	RESERVED
 CVE-2022-43705 [malicious OCSP responder could forge OCSP responses]
@@ -9759,9 +9759,9 @@ CVE-2022-43217
 CVE-2022-43216
 	RESERVED
 CVE-2022-43215 (Billing System Project v1.0 was discovered to contain a SQL injection  ...)
-	TODO: check
+	NOT-FOR-US: Billing System Project
 CVE-2022-43214 (Billing System Project v1.0 was discovered to contain a SQL injection  ...)
-	TODO: check
+	NOT-FOR-US: Billing System Project
 CVE-2022-43213
 	RESERVED
 CVE-2022-43212



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eaa8125cd4eb759f03b0c40da0f8c6b880126765

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eaa8125cd4eb759f03b0c40da0f8c6b880126765
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221122/051ddbd8/attachment.htm>

More information about the debian-security-tracker-commits mailing list