[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Oct 6 22:06:43 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
641bcacc by Salvatore Bonaccorso at 2022-10-06T23:06:16+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2022-42457 (Generex CS141 before 2.08 allows remote command execution by administr ...)
-	TODO: check
+	NOT-FOR-US: Generex CS141
 CVE-2022-42456
 	RESERVED
 CVE-2022-42455
@@ -425,11 +425,11 @@ CVE-2022-3400
 CVE-2022-3399
 	RESERVED
 CVE-2022-3398 (OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds W ...)
-	TODO: check
+	NOT-FOR-US: OMRON CX-Programmer
 CVE-2022-3397 (OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds W ...)
-	TODO: check
+	NOT-FOR-US: OMRON CX-Programmer
 CVE-2022-3396 (OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds W ...)
-	TODO: check
+	NOT-FOR-US: OMRON CX-Programmer
 CVE-2022-3395
 	RESERVED
 CVE-2022-3394
@@ -443,9 +443,9 @@ CVE-2022-3391
 CVE-2022-42251
 	RESERVED
 CVE-2022-42250 (Simple Cold Storage Management System v1.0 is vulnerable to SQL inject ...)
-	TODO: check
+	NOT-FOR-US: Simple Cold Storage Management System
 CVE-2022-42249 (Simple Cold Storage Management System v1.0 is vulnerable to SQL inject ...)
-	TODO: check
+	NOT-FOR-US: Simple Cold Storage Management System
 CVE-2022-42248
 	RESERVED
 CVE-2022-42247 (pfSense v2.5.2 was discovered to contain a cross-site scripting (XSS)  ...)
@@ -457,11 +457,11 @@ CVE-2022-42245
 CVE-2022-42244
 	RESERVED
 CVE-2022-42243 (Simple Cold Storage Management System v1.0 is vulnerable to SQL inject ...)
-	TODO: check
+	NOT-FOR-US: Simple Cold Storage Management System
 CVE-2022-42242 (Simple Cold Storage Management System v1.0 is vulnerable to SQL inject ...)
-	TODO: check
+	NOT-FOR-US: Simple Cold Storage Management System
 CVE-2022-42241 (Simple Cold Storage Management System v1.0 is vulnerable to SQL inject ...)
-	TODO: check
+	NOT-FOR-US: Simple Cold Storage Management System
 CVE-2022-42240
 	RESERVED
 CVE-2022-42239
@@ -2535,7 +2535,7 @@ CVE-2022-41357
 CVE-2022-41356
 	RESERVED
 CVE-2022-41355 (Online Leave Management System v1.0 was discovered to contain a SQL in ...)
-	TODO: check
+	NOT-FOR-US: Online Leave Management System
 CVE-2022-41354
 	RESERVED
 CVE-2022-41353
@@ -2759,7 +2759,7 @@ CVE-2022-41303
 CVE-2022-41302
 	RESERVED
 CVE-2022-41301 (A maliciously crafted PKT file when consumed through SubassemblyCompos ...)
-	TODO: check
+	NOT-FOR-US: Autodesk
 CVE-2022-41300
 	RESERVED
 CVE-2022-41299
@@ -7386,7 +7386,7 @@ CVE-2022-39267
 CVE-2022-39266 (isolated-vm is a library for nodejs which gives the user access to v8' ...)
 	NOT-FOR-US: isolated-vm
 CVE-2022-39265 (MyBB is a free and open source forum software. The _Mail Settings_ &#8 ...)
-	TODO: check
+	NOT-FOR-US: MyBB
 CVE-2022-39264 (nheko is a desktop client for the Matrix communication application. Al ...)
 	- nheko 0.10.2-1
 	NOTE: https://github.com/Nheko-Reborn/nheko/security/advisories/GHSA-8jcp-8jq4-5mm7



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/641bcacc1584fd25c5e4811f5ddc7f15c9df58a5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/641bcacc1584fd25c5e4811f5ddc7f15c9df58a5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221006/ab9369ee/attachment.htm>
