[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Oct 26 21:36:29 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b5e86133 by Salvatore Bonaccorso at 2022-10-26T22:36:03+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -311,11 +311,11 @@ CVE-2022-43778
 CVE-2022-43777
 	RESERVED
 CVE-2022-43776 (The url parameter of the /api/geojson endpoint in Metabase versions &l ...)
-	TODO: check
+	NOT-FOR-US: Metabase
 CVE-2022-43775 (The HICT_Loop class in Delta Electronics DIAEnergy v1.9 contains a SQL ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics DIAEnergy
 CVE-2022-43774 (The HandlerPageP_KID class in Delta Electronics DIAEnergy v1.9 contain ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics DIAEnergy
 CVE-2022-43773
 	RESERVED
 CVE-2022-43772
@@ -331,7 +331,7 @@ CVE-2022-43768
 CVE-2022-43767
 	RESERVED
 CVE-2022-43766 (Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable ...)
-	TODO: check
+	NOT-FOR-US: Apache IoTDB
 CVE-2022-43765
 	RESERVED
 CVE-2022-43764
@@ -403,9 +403,9 @@ CVE-2022-43750 (drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5
 	[bullseye] - linux 5.10.148-1
 	NOTE: https://git.kernel.org/linus/a659daf63d16aa883be42f3f34ff84235c302198 (6.1-rc1)
 CVE-2022-43749 (Improper privilege management vulnerability in summary report manageme ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2022-43748 (Improper limitation of a pathname to a restricted directory ('Path Tra ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2022-43747 (baramundi Management Agent (bMA) in baramundi Management Suite (bMS) 2 ...)
 	NOT-FOR-US: baramundi
 CVE-2022-3687
@@ -622,31 +622,31 @@ CVE-2022-3676 (In Eclipse Openj9 before version 0.35.0, interface calls can be i
 CVE-2022-3675
 	RESERVED
 CVE-2022-3674 (A vulnerability has been found in SourceCodester Sanitization Manageme ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Sanitization Management System
 CVE-2022-3673 (A vulnerability, which was classified as problematic, was found in Sou ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Sanitization Management System
 CVE-2022-3672 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Sanitization Management System
 CVE-2022-3671 (A vulnerability classified as critical was found in SourceCodester eLe ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester eLearning System
 CVE-2022-3670 (A vulnerability was found in Axiomatic Bento4. It has been classified  ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-3669 (A vulnerability was found in Axiomatic Bento4 and classified as proble ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-3668 (A vulnerability has been found in Axiomatic Bento4 and classified as p ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-3667 (A vulnerability, which was classified as critical, was found in Axioma ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-3666 (A vulnerability, which was classified as critical, has been found in A ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-3665 (A vulnerability classified as critical was found in Axiomatic Bento4.  ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-3664 (A vulnerability classified as critical has been found in Axiomatic Ben ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-3663 (A vulnerability was found in Axiomatic Bento4. It has been rated as pr ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-3662 (A vulnerability was found in Axiomatic Bento4. It has been declared as ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2021-46850 (myVesta Control Panel before 0.9.8-26-43 and Vesta Control Panel befor ...)
 	NOT-FOR-US: myVesta Control Panel
 CVE-2021-46849 (pikepdf before 2.10.0 allows an XXE attack against PDF XMP metadata pa ...)
@@ -2286,17 +2286,17 @@ CVE-2022-43005
 CVE-2022-43004
 	RESERVED
 CVE-2022-43003 (D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2022-43002 (D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2022-43001 (D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2022-43000 (D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2022-42999 (D-Link DIR-816 A2 1.10 B05 was discovered to contain multiple command  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2022-42998 (D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2022-42997
 	RESERVED
 CVE-2022-42996



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b5e8613333df96db68a4d0269563e5a148407ae7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b5e8613333df96db68a4d0269563e5a148407ae7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221026/0e618696/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list