Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3c717ed9 by Salvatore Bonaccorso at 2022-05-02T21:49:11+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11703,7 +11703,7 @@ CVE-2022-21191
CVE-2022-21190
RESERVED
CVE-2022-21189 (The package dexie before 3.2.2, from 4.0.0-alpha.1 and before
4.0.0-al ...)
- TODO: check
+ NOT-FOR-US: dexie
CVE-2022-21187 (The package libvcs before 0.11.1 are vulnerable to Command
Injection v ...)
NOT-FOR-US: libvcs
CVE-2022-21186
@@ -20983,9 +20983,9 @@ CVE-2022-23063
CVE-2022-23062
RESERVED
CVE-2022-23061 (In Shopizer versions 2.0 to 2.17.0 a regular admin can
permanently del ...)
- TODO: check
+ NOT-FOR-US: Shopizer
CVE-2022-23060 (A Stored Cross Site Scripting (XSS) vulnerability exists in
Shopizer v ...)
- TODO: check
+ NOT-FOR-US: Shopizer
CVE-2022-23059 (A Stored Cross Site Scripting (XSS) vulnerability exists in
Shopizer v ...)
NOT-FOR-US: Shopizer
CVE-2022-23058
@@ -22558,7 +22558,7 @@ CVE-2022-0124 (An issue has been discovered affecting
GitLab versions prior to 1
CVE-2022-0123 (An issue has been discovered affecting GitLab versions prior to
14.4.5 ...)
- gitlab <unfixed>
CVE-2021-4200 (A Improper Privilege Management vulnerability in SUSE Rancher
allows w ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2022-22677
RESERVED
CVE-2022-22676
@@ -52571,7 +52571,7 @@ CVE-2021-36786 (The miniorange_saml (aka Miniorange
Saml) extension before 1.4.3
CVE-2021-36785 (The miniorange_saml (aka Miniorange Saml) extension before
1.4.3 for T ...)
NOT-FOR-US: miniorange_saml (aka Miniorange Saml) extension for TYPO3
CVE-2021-36784 (A Improper Privilege Management vulnerability in SUSE Rancher
allows u ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2021-36783
RESERVED
CVE-2021-36782
@@ -52583,7 +52583,7 @@ CVE-2021-36780 (A Improper Access Control vulnerability
in longhorn of SUSE Long
CVE-2021-36779 (A Improper Access Control vulnerability inf SUSE Longhorn
allows any w ...)
NOT-FOR-US: Longhorn
CVE-2021-36778 (A Exposure of Sensitive Information to an Unauthorized Actor
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2021-36777 (A Reliance on Untrusted Inputs in a Security Decision
vulnerability in ...)
NOT-FOR-US: OpenSuSE infrastructure
CVE-2021-36776 (A Improper Access Control vulnerability in SUSE Rancher allows
remote ...)
@@ -65314,9 +65314,9 @@ CVE-2021-31676
CVE-2021-31675
RESERVED
CVE-2021-31674 (Cyclos 4 PRO 4.14.7 and before does not validate user input at
error i ...)
- TODO: check
+ NOT-FOR-US: Cyclos 4 PRO
CVE-2021-31673 (A Dom-based Cross-site scripting (XSS) vulnerability at
registration a ...)
- TODO: check
+ NOT-FOR-US: Cyclos 4 PRO
CVE-2021-31672
RESERVED
CVE-2021-31671 (pgsync before 0.6.7 is affected by Information Disclosure of
sensitive ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c717ed9621cc1156f2ff65530c607a016f5adaa
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c717ed9621cc1156f2ff65530c607a016f5adaa
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
