[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jan 6 06:42:56 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
78290382 by Salvatore Bonaccorso at 2023-01-06T07:42:31+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8555,7 +8555,7 @@ CVE-2022-46169 (Cacti is an open source platform which provides a robust and ext
 	NOTE: Fixed by: https://github.com/Cacti/cacti/commit/b43f13ae7f1e6bfe4e8e56a80a7cd867cf2db52b
 	NOTE: https://github.com/Cacti/cacti/security/advisories/GHSA-6p93-p743-35gf
 CVE-2022-46168 (Discourse is an option source discussion platform. Prior to version 2. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2022-46167 (Capsule is a multi-tenancy and policy-based framework for Kubernetes.  ...)
 	NOT-FOR-US: Capsule
 CVE-2022-46166 (Spring boot admins is an open source administrative user interface for ...)
@@ -75425,9 +75425,9 @@ CVE-2022-23551 (aad-pod-identity assigns Azure Active Directory identities to Ku
 CVE-2022-23550
 	RESERVED
 CVE-2022-23549 (Discourse is an option source discussion platform. Prior to version 2. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2022-23548 (Discourse is an option source discussion platform. Prior to version 2. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2022-23537 (PJSIP is a free and open source multimedia communication library writt ...)
 	- asterisk <unfixed>
 	- ring <unfixed>
@@ -75443,7 +75443,7 @@ CVE-2022-23547 (PJSIP is a free and open source multimedia communication library
 	NOTE: https://github.com/pjsip/pjproject/security/advisories/GHSA-cxwq-5g9x-x7fr
 	NOTE: https://github.com/pjsip/pjproject/commit/bc4812d31a67d5e2f973fbfaf950d6118226cf36
 CVE-2022-23546 (In version 2.9.0.beta14 of Discourse, an open-source discussion platfo ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2022-23545
 	RESERVED
 CVE-2022-23544 (MeterSphere is a one-stop open source continuous testing platform, cov ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78290382e40dfc155f32bd1532001e8f5941c20e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78290382e40dfc155f32bd1532001e8f5941c20e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230106/b5329c7d/attachment.htm>


More information about the debian-security-tracker-commits mailing list