[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Sep 29 22:04:43 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
90fe230e by Salvatore Bonaccorso at 2022-09-29T22:50:29+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1708,11 +1708,11 @@ CVE-2022-3242 (Code Injection in GitHub repository microweber/microweber prior t
CVE-2022-3241
RESERVED
CVE-2017-20148 (In the ebuild package through logcheck-1.3.23.ebuild for Logcheck on G ...)
- TODO: check
+ NOT-FOR-US: ebuild package for Logcheck on Gentoo
CVE-2017-20147 (In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gent ...)
- TODO: check
+ NOT-FOR-US: ebuild package for SmokePing on Gentoo
CVE-2016-20015 (In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gent ...)
- TODO: check
+ NOT-FOR-US: ebuild package for SmokePing on Gentoo
CVE-2022-41131
RESERVED
CVE-2022-41130
@@ -2153,7 +2153,7 @@ CVE-2022-40933 (Online Pet Shop We App v1.0 by oretnom23 is vulnerable to SQL in
CVE-2022-40932 (In Zoo Management System v1.0, there is an arbitrary file upload vulne ...)
NOT-FOR-US: Zoo Management System
CVE-2022-40931 (dutchcoders Transfer.sh 1.4.0 is vulnerable to Cross Site Scripting (X ...)
- TODO: check
+ NOT-FOR-US: dutchcoders Transfer.sh
CVE-2022-40930
RESERVED
CVE-2022-40929 (XXL-JOB 2.2.0 has a Command execution vulnerability in background task ...)
@@ -2235,13 +2235,13 @@ CVE-2022-40892
CVE-2022-40891
RESERVED
CVE-2022-40890 (A vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 and earlie ...)
- TODO: check
+ NOT-FOR-US: Open5GS
CVE-2022-40889
RESERVED
CVE-2022-40888
RESERVED
CVE-2022-40887 (SourceCodester Best Student Result Management System 1.0 is vulnerable ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Best Student Result Management System
CVE-2022-40886
RESERVED
CVE-2022-40885
@@ -3272,13 +3272,13 @@ CVE-2022-40476 (A null pointer dereference issue was discovered in fs/io_uring.c
NOTE: https://lore.kernel.org/lkml/CAO4S-mdVW5GkODk0+vbQexNAAJZopwzFJ9ACvRCJ989fQ4A6Ow@mail.gmail.com/
NOTE: https://git.kernel.org/linus/386e4fb6962b9f248a80f8870aea0870ca603e89 (5.19-rc4)
CVE-2022-40475 (TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a com ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2022-40474
RESERVED
CVE-2022-40473
RESERVED
CVE-2022-40472 (ZKTeco Xiamen Information Technology ZKBio Time 8.0.7 Build: 20220721. ...)
- TODO: check
+ NOT-FOR-US: ZKTeco Xiamen Information Technology ZKBio Time
CVE-2022-40471
RESERVED
CVE-2022-40470
@@ -3409,9 +3409,9 @@ CVE-2022-40410
CVE-2022-40409
RESERVED
CVE-2022-40408 (FeehiCMS v2.1.1 was discovered to contain a cross-site scripting (XSS) ...)
- TODO: check
+ NOT-FOR-US: FeehiCMS
CVE-2022-40407 (A zip slip vulnerability in the file upload function of Chamilo v1.11 ...)
- TODO: check
+ NOT-FOR-US: Chamilo LMS
CVE-2022-40406
RESERVED
CVE-2022-40405
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90fe230e79862efa7e5ed53539971527f1ffe1d5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90fe230e79862efa7e5ed53539971527f1ffe1d5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220929/3445b7f2/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list