[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Sep 30 09:13:16 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
18a7d776 by Salvatore Bonaccorso at 2022-09-30T10:12:40+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
CVE-2022-41847 (An issue was discovered in Bento4 1.6.0-639. A memory leak exists in A ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2022-41846 (An issue was discovered in Bento4 1.6.0-639. There ie excessive memory ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2022-41845 (An issue was discovered in Bento4 1.6.0-639. There ie excessive memory ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2022-41844 (An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch( ...)
TODO: check
CVE-2022-41843 (An issue was discovered in Xpdf 4.04. There is a crash in convertToTyp ...)
@@ -11,7 +11,7 @@ CVE-2022-41843 (An issue was discovered in Xpdf 4.04. There is a crash in conver
CVE-2022-41842 (An issue was discovered in Xpdf 4.04. There is a crash in gfseek(_IO_F ...)
TODO: check
CVE-2022-41841 (An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer de ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2022-41829
RESERVED
CVE-2022-41828 (In Amazon AWS Redshift JDBC Driver (aka amazon-redshift-jdbc-driver or ...)
@@ -6110,7 +6110,7 @@ CVE-2022-39234
CVE-2022-39233
RESERVED
CVE-2022-39232 (Discourse is an open source discussion platform. Starting with version ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2022-39231 (Parse Server is an open source backend that can be deployed to any inf ...)
TODO: check
CVE-2022-39230 (fhir-works-on-aws-authz-smart is an implementation of the authorizatio ...)
@@ -6122,7 +6122,7 @@ CVE-2022-39228
CVE-2022-39227 (python-jwt is a module for generating and verifying JSON Web Tokens. V ...)
NOT-FOR-US: python-jwt (not the same as src:pyjwt)
CVE-2022-39226 (Discourse is an open source discussion platform. In versions prior to ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2022-39225 (Parse Server is an open source backend that can be deployed to any inf ...)
NOT-FOR-US: Node parse-server
CVE-2022-39224 (Arr-pm is an RPM reader/writer library written in Ruby. Versions prior ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18a7d7768cf96cd1204d8d7d0470254b4f51b46f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18a7d7768cf96cd1204d8d7d0470254b4f51b46f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220930/c1007aec/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list