[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) Thu, 14 Apr 2022 03:18:15 -0700


Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
44ee472b by Neil Williams at 2022-04-14T11:17:33+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18521,27 +18521,27 @@ CVE-2022-22965 (A Spring MVC or Spring WebFlux 
application running on JDK 9+ may
        NOTE: https://bugalert.org/content/notices/2022-03-30-spring.html
        NOTE: https://tanzu.vmware.com/security/cve-2022-22965
 CVE-2022-22964 (VMware Horizon Client for Linux (prior to 22.x) contains a 
local privi ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22963 (In Spring Cloud Function versions 3.1.6, 3.2.2 and older 
unsupported v ...)
        NOT-FOR-US: Spring Cloud Function
 CVE-2022-22962 (VMware Horizon Client for Linux (prior to 22.x) contains a 
local privi ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22961 (VMware Workspace ONE Access, Identity Manager and vRealize 
Automation  ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22960 (VMware Workspace ONE Access, Identity Manager and vRealize 
Automation  ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22959 (VMware Workspace ONE Access, Identity Manager and vRealize 
Automation  ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22958 (VMware Workspace ONE Access, Identity Manager and vRealize 
Automation  ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22957 (VMware Workspace ONE Access, Identity Manager and vRealize 
Automation  ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22956 (VMware Workspace ONE Access has two authentication bypass 
vulnerabilit ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22955 (VMware Workspace ONE Access has two authentication bypass 
vulnerabilit ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22954 (VMware Workspace ONE Access and Identity Manager contain a 
remote code ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2022-22953
        RESERVED
 CVE-2022-22952 (VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x 
prior to ...)
@@ -20103,19 +20103,19 @@ CVE-2022-22567 (Select Dell Client Commercial and 
Consumer platforms are vulnera
 CVE-2022-22566 (Select Dell Client Commercial and Consumer platforms contain a 
pre-boo ...)
        NOT-FOR-US: Dell
 CVE-2022-22565 (Dell PowerScale OneFS, versions 9.0.0-9.3.0, contain an 
improper autho ...)
-       TODO: check
+       NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22564
        RESERVED
 CVE-2022-22563 (Dell EMC Powerscale OneFS 8.2.x - 9.2.x omit security-relevant 
informa ...)
        NOT-FOR-US: EMC
 CVE-2022-22562 (Dell PowerScale OneFS, versions 8.2.0-9.3.0, contain a 
improper handli ...)
-       TODO: check
+       NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22561 (Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contain an 
improper res ...)
-       TODO: check
+       NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22560 (Dell EMC PowerScale OneFS 8.1.x - 9.1.x contain hard coded 
credentials ...)
        NOT-FOR-US: EMC
 CVE-2022-22559 (Dell PowerScale OneFS, version 9.3.0, contains a use of a 
broken or ri ...)
-       TODO: check
+       NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22558
        RESERVED
 CVE-2022-22557
@@ -20133,9 +20133,9 @@ CVE-2022-22552 (Dell EMC AppSync versions 3.9 to 4.3 
contain a clickjacking vuln
 CVE-2022-22551 (DELL EMC AppSync versions 3.9 to 4.3 use GET request method 
with sensi ...)
        NOT-FOR-US: EMC
 CVE-2022-22550 (Dell PowerScale OneFS, versions 8.2.2 and above, contain a 
password di ...)
-       TODO: check
+       NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22549 (Dell PowerScale OneFS, 8.2.x-9.3.x, contains a Improper 
Certificate Va ...)
-       TODO: check
+       NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-22548
        RESERVED
 CVE-2022-22547 (Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), 
allows  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44ee472bc48247faf6764261c56b5c4d9db4d8ca

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44ee472bc48247faf6764261c56b5c4d9db4d8ca
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to