[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Oct 28 21:38:01 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
725140bb by Salvatore Bonaccorso at 2022-10-28T22:37:30+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1919,7 +1919,7 @@ CVE-2022-3710
 CVE-2022-3709
 	RESERVED
 CVE-2022-3708 (The Web Stories plugin for WordPress is vulnerable to Server-Side Requ ...)
-	TODO: check
+	NOT-FOR-US: Web Stories plugin for WordPress
 CVE-2022-3707
 	RESERVED
 CVE-2022-3706
@@ -6233,11 +6233,11 @@ CVE-2022-3404
 CVE-2022-3403
 	RESERVED
 CVE-2022-3402 (The Log HTTP Requests plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: Log HTTP Requests plugin for WordPress
 CVE-2022-3401 (The Bricks theme for WordPress is vulnerable to remote code execution  ...)
-	TODO: check
+	NOT-FOR-US: Bricks theme for WordPress
 CVE-2022-3400 (The Bricks theme for WordPress is vulnerable to authorization bypass d ...)
-	TODO: check
+	NOT-FOR-US: Bricks theme for WordPress
 CVE-2022-3399
 	RESERVED
 CVE-2022-3398 (OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds W ...)
@@ -16056,7 +16056,7 @@ CVE-2022-2865 (A cross-site scripting issue has been discovered in GitLab CE/EE
 	- gitlab <unfixed>
 	NOTE: https://about.gitlab.com/releases/2022/08/30/critical-security-release-gitlab-15-3-2-released/
 CVE-2022-2864 (The demon image annotation plugin for WordPress is vulnerable to Cross ...)
-	TODO: check
+	NOT-FOR-US: demon image annotation plugin for WordPress
 CVE-2022-2863 (The Migration, Backup, Staging WordPress plugin before 0.9.76 does not ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-2862 (Use After Free in GitHub repository vim/vim prior to 9.0.0221. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/725140bbb757a47e89ae56d8d2bd1a8a6bae93e3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/725140bbb757a47e89ae56d8d2bd1a8a6bae93e3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221028/0b4823bf/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list