Neil Williams pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3fbb4bbb by Neil Williams at 2022-04-21T10:18:44+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12855,7 +12855,7 @@ CVE-2022-24847 (GeoServer is an open source software
server written in Java that
CVE-2022-24846 (GeoWebCache is a tile caching server implemented in Java. The
GeoWebCa ...)
TODO: check
CVE-2022-24845 (Vyper is a pythonic Smart Contract Language for the ethereum
virtual m ...)
- TODO: check
+ NOT-FOR-US: Vyper
CVE-2022-24844 (Gin-vue-admin is a backstage management system based on vue
and gin, w ...)
NOT-FOR-US: Gin-vue-admin
CVE-2022-24843 (Gin-vue-admin is a backstage management system based on vue
and gin, w ...)
@@ -12863,7 +12863,7 @@ CVE-2022-24843 (Gin-vue-admin is a backstage management
system based on vue and
CVE-2022-24842 (MinIO is a High Performance Object Storage released under GNU
Affero G ...)
NOT-FOR-US: MinIO
CVE-2022-24841 (fleetdm/fleet is an open source device management, built on
osquery. A ...)
- TODO: check
+ NOT-FOR-US: Fleet
CVE-2022-24840
RESERVED
CVE-2022-24839 (org.cyberneko.html is an html parser written in Java. The fork
of `org ...)
@@ -12873,7 +12873,7 @@ CVE-2022-24839 (org.cyberneko.html is an html parser
written in Java. The fork o
NOTE:
https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv
NOTE:
https://github.com/sparklemotion/nekohtml/commit/a800fce3b079def130ed42a408ff1d09f89e773d
CVE-2022-24838 (Nextcloud Calendar is a calendar application for the nextcloud
framewo ...)
- TODO: check
+ NOT-FOR-US: Nextcloud Calendar
CVE-2022-24837 (HedgeDoc is an open-source, web-based, self-hosted,
collaborative mark ...)
NOT-FOR-US: HedgeDoc
CVE-2022-24836 (Nokogiri is an open source XML and HTML library for Ruby.
Nokogiri `&l ...)
@@ -12885,7 +12885,7 @@ CVE-2022-24835
CVE-2022-24834
RESERVED
CVE-2022-24833 (PrivateBin is minimalist, open source online pastebin clone
where the ...)
- TODO: check
+ NOT-FOR-US: PrivateBin
CVE-2022-24832 (GoCD is an open source a continuous delivery server. The
bundled gocd- ...)
NOT-FOR-US: GoCD
CVE-2022-24831
@@ -12893,7 +12893,7 @@ CVE-2022-24831
CVE-2022-24830
RESERVED
CVE-2022-24829 (Garden is an automation platform for Kubernetes development
and testin ...)
- TODO: check
+ NOT-FOR-US: Garden
CVE-2022-24828 (Composer is a dependency manager for the PHP programming
language. Int ...)
- composer <unfixed> (bug #1009960)
NOTE:
https://github.com/composer/composer/commit/2c40c53637c5c7e43fff7c09d3d324d632734709
(2.2.12)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fbb4bbba45e54cb45959e20f54abf9325482723
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fbb4bbba45e54cb45959e20f54abf9325482723
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
