[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Nov 22 20:28:34 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8e24fb18 by Salvatore Bonaccorso at 2022-11-22T21:28:06+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -33,7 +33,7 @@ CVE-2022-4118
CVE-2022-4117
RESERVED
CVE-2022-4116 (A vulnerability was found in quarkus. This security flaw happens in De ...)
- TODO: check
+ NOT-FOR-US: Quarkus
CVE-2022-4115
RESERVED
CVE-2022-XXXX [rust-atty: Potential unaligned read]
@@ -1456,7 +1456,7 @@ CVE-2022-45365
CVE-2022-45364
RESERVED
CVE-2022-45363 (Auth. (subscriber+) Stored Cross-Site Scripting (XSS) in Muffingroup B ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-45362
RESERVED
CVE-2022-45361
@@ -2867,21 +2867,21 @@ CVE-2022-44810
CVE-2022-44809
RESERVED
CVE-2022-44808 (A command injection vulnerability has been found on D-Link DIR-823G de ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2022-44807 (D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow vi ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2022-44806 (D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow. ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2022-44805
RESERVED
CVE-2022-44804 (D-Link DIR-882 1.10B02 and1.20B06 is vulnerable to Buffer Overflow via ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2022-44803
RESERVED
CVE-2022-44802
RESERVED
CVE-2022-44801 (D-Link DIR-878 1.02B05 is vulnerable to Incorrect Access Control. ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2022-44800
RESERVED
CVE-2022-44799
@@ -5503,43 +5503,43 @@ CVE-2022-44204 (D-Link DIR3060 DIR3060A1_FW111B04.bin is vulnerable to Buffer Ov
CVE-2022-44203
RESERVED
CVE-2022-44202 (D-Link DIR878 1.02B04 and 1.02B05 are vulnerable to Buffer Overflow. ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2022-44201 (D-Link DIR823G 1.02B05 is vulnerable to Commad Injection. ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2022-44200 (Netgear R7000P V1.3.0.8, V1.3.1.64 is vulnerable to Buffer Overflow vi ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44199 (Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via paramete ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44198 (Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via paramete ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44197 (Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44196 (Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44195
RESERVED
CVE-2022-44194 (Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44193 (Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44192
RESERVED
CVE-2022-44191 (Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via paramete ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44190 (Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via paramete ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44189
RESERVED
CVE-2022-44188 (Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/ ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44187 (Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via wan_dns1_ ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44186 (Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44185
RESERVED
CVE-2022-44184 (Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/ ...)
- TODO: check
+ NOT-FOR-US: Netgear
CVE-2022-44183 (Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via function ...)
NOT-FOR-US: Tenda
CVE-2022-44182
@@ -9807,7 +9807,7 @@ CVE-2022-43214 (Billing System Project v1.0 was discovered to contain a SQL inje
CVE-2022-43213
RESERVED
CVE-2022-43212 (Billing System Project v1.0 was discovered to contain a SQL injection ...)
- TODO: check
+ NOT-FOR-US: Billing System Project
CVE-2022-43211
RESERVED
CVE-2022-43210
@@ -10280,7 +10280,7 @@ CVE-2022-42991 (A stored cross-site scripting (XSS) vulnerability in Simple Onli
CVE-2022-42990 (Food Ordering Management System v1.0 was discovered to contain a SQL i ...)
NOT-FOR-US: Food Ordering Management System
CVE-2022-42989 (ERP Sankhya before v4.11b81 was discovered to contain a cross-site scr ...)
- TODO: check
+ NOT-FOR-US: ERP Sankhya
CVE-2022-42988
RESERVED
CVE-2022-42987
@@ -12730,7 +12730,7 @@ CVE-2022-42100
CVE-2022-42099
RESERVED
CVE-2022-42098 (KLiK SocialMediaWebsite version v1.0.1 is vulnerable to SQL Injection ...)
- TODO: check
+ NOT-FOR-US: KLiK SocialMediaWebsite
CVE-2022-42097 (Backdrop CMS version 1.23.0 was discovered to contain a stored cross-s ...)
TODO: check
CVE-2022-42096 (Backdrop CMS version 1.23.0 was discovered to contain a stored cross-s ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e24fb182990153e6de9fddb206903f7f333a97c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e24fb182990153e6de9fddb206903f7f333a97c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221122/e8ebdbb2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list