[Git][security-tracker-team/security-tracker][master] mark two linux issues as non issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Mar 7 15:06:59 GMT 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2e66929d by Moritz Muehlenhoff at 2023-03-07T16:06:24+01:00
mark two linux issues as non issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -38439,8 +38439,9 @@ CVE-2022-41849 (drivers/video/fbdev/smscufx.c in the Linux kernel through 5.19.1
 	[bullseye] - linux 5.10.158-1
 	NOTE: https://lore.kernel.org/all/20220925133243.GA383897@ubuntu/T/
 CVE-2022-41848 (drivers/char/pcmcia/synclink_cs.c in the Linux kernel through 5.19.12  ...)
-	- linux <unfixed>
+	- linux <unfixed> (unimportant)
 	NOTE: https://lore.kernel.org/lkml/20220919040251.GA302541@ubuntu/T/#rc85e751f467b3e6f9ccef92cfa7fb8a6cc50c270
+	NOTE: Negligible security impact, would need physical access to "exploit"
 CVE-2022-41812
 	REJECTED
 CVE-2022-41811
@@ -88561,10 +88562,11 @@ CVE-2022-0402
 CVE-2022-0401 (Path Traversal in NPM w-zip prior to 1.0.12. ...)
 	NOT-FOR-US: Node w-zip
 CVE-2022-0400 (An out-of-bounds read vulnerability was discovered in linux kernel in  ...)
-	- linux <unfixed>
+	- linux <unfixed> (unimportant)
 	[stretch] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2044575
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2040604 (not public)
+	NOTE: non issue, no security impact
 CVE-2022-0399 (The Advanced Product Labels for WooCommerce WordPress plugin before 1. ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-0398 (The ThirstyAffiliates Affiliate Link Manager WordPress plugin before 3 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e66929d56b9102b2f7133b8489fbcf2352d305f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e66929d56b9102b2f7133b8489fbcf2352d305f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230307/b708cd38/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list