[Git][security-tracker-team/security-tracker][master] Process two CVEs for glpi

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Sep 16 09:48:50 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
45db1dd6 by Salvatore Bonaccorso at 2022-09-16T10:48:19+02:00
Process two CVEs for glpi

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25035,7 +25035,8 @@ CVE-2022-31189 (DSpace open source software is a repository application which pr
 CVE-2022-31188 (CVAT is an opensource interactive video and image annotation tool for  ...)
 	NOT-FOR-US: cvat-ai/cvat
 CVE-2022-31187 (GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free  ...)
-	TODO: check
+	- glpi <removed> (unimportant)
+	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2022-31186 (NextAuth.js is a complete open source authentication solution for Next ...)
 	NOT-FOR-US: NextAuth.js
 CVE-2022-31185 (mprweb is a hosting platform for the makedeb Package Repository. Email ...)
@@ -25146,7 +25147,8 @@ CVE-2022-31144 (Redis is an in-memory database that persists on disk. A speciall
 	NOTE: https://github.com/redis/redis/security/advisories/GHSA-96f7-42fg-2jrh
 	NOTE: https://github.com/redis/redis/commit/15ae4e29e537e7ec37f0df1825d9fb2beea67124
 CVE-2022-31143 (GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free  ...)
-	TODO: check
+	- glpi <removed> (unimportant)
+	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2022-31142 (@fastify/bearer-auth is a Fastify plugin to require bearer Authorizati ...)
 	NOT-FOR-US: @fastify/bearer-auth
 CVE-2022-31141



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45db1dd6203fa8afcfd7e099105470447cea8138

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45db1dd6203fa8afcfd7e099105470447cea8138
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220916/98c16dc1/attachment.htm>

More information about the debian-security-tracker-commits mailing list