[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) Thu, 14 Apr 2022 03:56:45 -0700


Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
05d6be37 by Neil Williams at 2022-04-14T11:56:05+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12105,7 +12105,7 @@ CVE-2022-24769 (Moby is an open-source project created 
by Docker to enable and a
 CVE-2022-24768 (Argo CD is a declarative, GitOps continuous delivery tool for 
Kubernet ...)
        NOT-FOR-US: Argo CD
 CVE-2022-24767 (Git for Windows is a fork of Git containing Windows-specific 
patches.  ...)
-       TODO: check
+       NOT-FOR-US: Git-for-Windows (Git fork containing Windows-specific 
patches)
 CVE-2022-24766 (mitmproxy is an interactive, SSL/TLS-capable intercepting 
proxy. In mi ...)
        - mitmproxy <unfixed> (bug #1008948)
        [bullseye] - mitmproxy <no-dsa> (Minor issue)
@@ -12448,15 +12448,15 @@ CVE-2022-24673
 CVE-2022-24672
        RESERVED
 CVE-2022-24383 (The affected product is vulnerable to an out-of-bounds read, 
which may ...)
-       TODO: check
+       NOT-FOR-US: Fuji Electric
 CVE-2022-21228 (The affected product is vulnerable to a stack-based buffer 
overflow, w ...)
-       TODO: check
+       NOT-FOR-US: Fuji Electric
 CVE-2022-21214 (The affected product is vulnerable to a heap-based buffer 
overflow, wh ...)
-       TODO: check
+       NOT-FOR-US: Fuji Electric
 CVE-2022-21202 (The affected product is vulnerable to an out-of-bounds read, 
which may ...)
-       TODO: check
+       NOT-FOR-US: Fuji Electric
 CVE-2022-21168 (The affected product is vulnerable due to an invalid pointer 
initializ ...)
-       TODO: check
+       NOT-FOR-US: Fuji Electric
 CVE-2022-24671 (A link following privilege escalation vulnerability in Trend 
Micro Ant ...)
        NOT-FOR-US: Trend Micro
 CVE-2022-24670
@@ -13104,11 +13104,11 @@ CVE-2022-24415 (Dell BIOS contains an improper input 
validation vulnerability. A
 CVE-2022-24414
        RESERVED
 CVE-2022-24413 (Dell PowerScale OneFS, versions 8.2.2-9.3.x, contain a 
time-of-check-t ...)
-       TODO: check
+       NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-24412 (Dell EMC PowerScale OneFS 8.2.x - 9.3.0.x contain an improper 
handling ...)
        NOT-FOR-US: EMC
 CVE-2022-24411 (Dell PowerScale OneFS 8.2.2 and above contain an elevation of 
privileg ...)
-       TODO: check
+       NOT-FOR-US: Dell PowerScale OneFS
 CVE-2022-24410
        RESERVED
 CVE-2022-24409 (Only customers with active BSAFE maintenance contracts can 
receive det ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/05d6be37aff47eb3ea4bc4733c766bab604f3ee2

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/05d6be37aff47eb3ea4bc4733c766bab604f3ee2
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to