[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 4 21:06:22 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0c62219 by Salvatore Bonaccorso at 2024-06-04T22:03:27+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -168161,7 +168161,7 @@ CVE-2022-1244 (heap-buffer-overflow in GitHub repository radareorg/radare2 prior
 CVE-2022-1243 (CRHTLF can lead to invalid protocol extraction potentially leading to  ...)
 	NOT-FOR-US: URI.js
 CVE-2022-1242 (Apport can be tricked into connecting to arbitrary sockets as the root ...)
-	TODO: check
+	NOT-FOR-US: Apport
 CVE-2022-1241 (The Ask me WordPress theme before 6.8.2 does not properly sanitise and ...)
 	NOT-FOR-US: WordPress theme
 CVE-2022-28796 (jbd2_journal_wait_updates in fs/jbd2/transaction.c in the Linux kernel ...)
@@ -180018,7 +180018,7 @@ CVE-2022-24700 (An issue was discovered in WinAPRS 2.9.0. A buffer overflow in D
 CVE-2022-0556 (A local privilege escalation vulnerability caused by incorrect permiss ...)
 	NOT-FOR-US: Zyxel
 CVE-2022-0555 (Subiquity Shows Guided Storage Passphrase in Plaintext with Read-all P ...)
-	TODO: check
+	NOT-FOR-US: Subiquity
 CVE-2022-0554 (Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior  ...)
 	{DLA-3182-1 DLA-2947-1}
 	- vim 2:8.2.4659-1 (unimportant)
@@ -201856,7 +201856,7 @@ CVE-2021-42849 (A weak default password for the serial port was reported in some
 CVE-2021-42848 (An information disclosure vulnerability was reported in some Lenovo Pe ...)
 	NOT-FOR-US: Lenovo
 CVE-2021-3899 (There is a race condition in the 'replaced executable' detection that, ...)
-	TODO: check
+	NOT-FOR-US: Apport
 CVE-2021-3898 (Versions of Motorola Ready For and Motorola Device Help Android applic ...)
 	NOT-FOR-US: Lenovo
 CVE-2021-3897 (An authentication bypass vulnerability was discovered in an internal s ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0c62219fffe0675eb27c1ce2f26284efaa6d6d2

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0c62219fffe0675eb27c1ce2f26284efaa6d6d2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240604/da30c9d3/attachment.htm>

More information about the debian-security-tracker-commits mailing list