[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Sep 23 10:08:41 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
018b412d by Salvatore Bonaccorso at 2022-09-23T11:08:12+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45,7 +45,7 @@ CVE-2022-3270
 CVE-2022-3269
 	RESERVED
 CVE-2022-3268 (Weak Password Requirements in GitHub repository ikus060/minarca prior  ...)
-	TODO: check
+	NOT-FOR-US: minarca
 CVE-2022-3267 (Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffwe ...)
 	- rdiffweb <itp> (bug #969974)
 CVE-2022-3266
@@ -471,7 +471,7 @@ CVE-2022-3253
 CVE-2022-3252 (Improper detection of complete HTTP body decompression SwiftNIO Extras ...)
 	TODO: check
 CVE-2022-3251 (Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub ...)
-	TODO: check
+	NOT-FOR-US: minarca
 CVE-2022-3250 (Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub ...)
 	- rdiffweb <itp> (bug #969974)
 CVE-2022-3249
@@ -2950,11 +2950,11 @@ CVE-2022-40091
 CVE-2022-40090
 	RESERVED
 CVE-2022-40089 (A remote file inclusion (RFI) vulnerability in Simple College Website  ...)
-	TODO: check
+	NOT-FOR-US: Simple College Website
 CVE-2022-40088 (Simple College Website v1.0 was discovered to contain a reflected cros ...)
-	TODO: check
+	NOT-FOR-US: Simple College Website
 CVE-2022-40087 (Simple College Website v1.0 was discovered to contain an arbitrary fil ...)
-	TODO: check
+	NOT-FOR-US: Simple College Website
 CVE-2022-40086
 	RESERVED
 CVE-2022-40085
@@ -10467,13 +10467,13 @@ CVE-2022-37237 (An attacker can send malicious RTMP requests to make the ZLMedia
 CVE-2022-37236
 	RESERVED
 CVE-2022-37235 (Netgear Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router R7000-V1. ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2022-37234 (Netgear Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router R7000-V1. ...)
 	NOT-FOR-US: Netgear
 CVE-2022-37233
 	RESERVED
 CVE-2022-37232 (Netgear N300 wireless router wnr2000v4-V1.0.0.70 is vulnerable to Buff ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2022-37231
 	RESERVED
 CVE-2022-37230
@@ -11270,7 +11270,7 @@ CVE-2022-36936
 CVE-2022-36935
 	RESERVED
 CVE-2022-36934 (An integer overflow in WhatsApp could result in remote code execution  ...)
-	TODO: check
+	NOT-FOR-US: WhatsApp
 CVE-2022-36933
 	RESERVED
 CVE-2022-36932
@@ -24333,7 +24333,7 @@ CVE-2022-31939
 CVE-2022-31938
 	RESERVED
 CVE-2022-31937 (Netgear N300 wireless router wnr2000v4-V1.0.0.70 was discovered to con ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2022-31936
 	RESERVED
 CVE-2022-31935



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/018b412d024f41053e1c571766ec19f474c85b6a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/018b412d024f41053e1c571766ec19f474c85b6a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220923/9e0a04a0/attachment.htm>

More information about the debian-security-tracker-commits mailing list