[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Sep 30 09:13:16 BST 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
18a7d776 by Salvatore Bonaccorso at 2022-09-30T10:12:40+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2022-41847 (An issue was discovered in Bento4 1.6.0-639. A memory leak exists in A ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-41846 (An issue was discovered in Bento4 1.6.0-639. There ie excessive memory ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-41845 (An issue was discovered in Bento4 1.6.0-639. There ie excessive memory ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-41844 (An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch( ...)
 	TODO: check
 CVE-2022-41843 (An issue was discovered in Xpdf 4.04. There is a crash in convertToTyp ...)
@@ -11,7 +11,7 @@ CVE-2022-41843 (An issue was discovered in Xpdf 4.04. There is a crash in conver
 CVE-2022-41842 (An issue was discovered in Xpdf 4.04. There is a crash in gfseek(_IO_F ...)
 	TODO: check
 CVE-2022-41841 (An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer de ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2022-41829
 	RESERVED
 CVE-2022-41828 (In Amazon AWS Redshift JDBC Driver (aka amazon-redshift-jdbc-driver or ...)
@@ -6110,7 +6110,7 @@ CVE-2022-39234
 CVE-2022-39233
 	RESERVED
 CVE-2022-39232 (Discourse is an open source discussion platform. Starting with version ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2022-39231 (Parse Server is an open source backend that can be deployed to any inf ...)
 	TODO: check
 CVE-2022-39230 (fhir-works-on-aws-authz-smart is an implementation of the authorizatio ...)
@@ -6122,7 +6122,7 @@ CVE-2022-39228
 CVE-2022-39227 (python-jwt is a module for generating and verifying JSON Web Tokens. V ...)
 	NOT-FOR-US: python-jwt (not the same as src:pyjwt)
 CVE-2022-39226 (Discourse is an open source discussion platform. In versions prior to  ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2022-39225 (Parse Server is an open source backend that can be deployed to any inf ...)
 	NOT-FOR-US: Node parse-server
 CVE-2022-39224 (Arr-pm is an RPM reader/writer library written in Ruby. Versions prior ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18a7d7768cf96cd1204d8d7d0470254b4f51b46f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18a7d7768cf96cd1204d8d7d0470254b4f51b46f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220930/c1007aec/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list