[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) Tue, 03 May 2022 03:14:23 -0700


Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
637c3f52 by Neil Williams at 2022-05-03T11:13:44+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -348,7 +348,7 @@ CVE-2021-46790 (ntfsck in NTFS-3G through 2021.8.22 has a 
heap-based buffer over
        NOTE: https://github.com/tuxera/ntfs-3g/issues/16
        NOTE: ntfsck not included in Debian binary packages
 CVE-2022-1544 (Formula Injection/CSV Injection due to Improper Neutralization 
of Form ...)
-       TODO: check
+       NOT-FOR-US: yii-helpers
 CVE-2022-29967 (static_compressed_inmemory_website_callback.c in Glewlwyd 
through 2.6. ...)
        - glewlwyd 2.7.0-1
        NOTE: 
https://github.com/babelouest/glewlwyd/commit/e3f7245c33897bf9b3a75acfcdb8b7b93974bf11
@@ -3030,7 +3030,7 @@ CVE-2022-1302 (In the MZ Automation LibIEC61850 in 
versions prior to 1.5.1 an un
 CVE-2022-1301
        RESERVED
 CVE-2022-1300 (Multiple Version of TRUMPF TruTops products expose a service 
function  ...)
-       TODO: check
+       NOT-FOR-US: TRUMPF TruTops
 CVE-2022-1299
        RESERVED
 CVE-2022-1298
@@ -34977,7 +34977,7 @@ CVE-2022-20769
 CVE-2022-20768
        RESERVED
 CVE-2022-20767 (A vulnerability in the Snort rule evaluation function of Cisco 
Firepow ...)
-       TODO: check
+       NOT-FOR-US: Cisco Firepower
 CVE-2022-20766
        RESERVED
 CVE-2022-20765
@@ -34991,13 +34991,13 @@ CVE-2022-20762 (A vulnerability in the Common 
Execution Environment (CEE) ConfD
 CVE-2022-20761 (A vulnerability in the integrated wireless access point (AP) 
packet pr ...)
        NOT-FOR-US: Cisco
 CVE-2022-20760 (A vulnerability in the DNS inspection handler of Cisco 
Adaptive Securi ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20759 (A vulnerability in the web services interface for remote 
access VPN fe ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20758 (A vulnerability in the implementation of the Border Gateway 
Protocol ( ...)
        NOT-FOR-US: Cisco
 CVE-2022-20757 (A vulnerability in the connection handling function in Cisco 
Firepower ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20756 (A vulnerability in the RADIUS feature of Cisco Identity 
Services Engin ...)
        NOT-FOR-US: Cisco
 CVE-2022-20755 (Multiple vulnerabilities in the API and web-based management 
interface ...)
@@ -35009,35 +35009,35 @@ CVE-2022-20753
 CVE-2022-20752
        RESERVED
 CVE-2022-20751 (A vulnerability in the Snort detection engine integration for 
Cisco Fi ...)
-       TODO: check
+       NOT-FOR-US: Cisco Firepower
 CVE-2022-20750 (A vulnerability in the checkpoint manager implementation of 
Cisco Redu ...)
        NOT-FOR-US: Cisco
 CVE-2022-20749 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, 
RV340,  ...)
        NOT-FOR-US: Cisco Small Business RV Series Routers
 CVE-2022-20748 (A vulnerability in the local malware analysis process of Cisco 
Firepow ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20747 (A vulnerability in the History API of Cisco SD-WAN vManage 
Software co ...)
        NOT-FOR-US: Cisco
 CVE-2022-20746 (A vulnerability in the TCP proxy functionality of Cisco 
Firepower Thre ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20745 (A vulnerability in the web services interface for remote 
access VPN fe ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20744 (A vulnerability in the input protection mechanisms of Cisco 
Firepower  ...)
-       TODO: check
+       NOT-FOR-US: Cisco Firepower
 CVE-2022-20743 (A vulnerability in the web management interface of Cisco 
Firepower Man ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20742 (A vulnerability in an IPsec VPN library of Cisco Adaptive 
Security App ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20741 (A vulnerability in the web-based management interface of the 
Network D ...)
        NOT-FOR-US: Cisco
 CVE-2022-20740 (A vulnerability in the web-based management interface of Cisco 
Firepow ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20739 (A vulnerability in the CLI of Cisco SD-WAN vManage Software 
could allo ...)
        NOT-FOR-US: Cisco
 CVE-2022-20738 (A vulnerability in the Cisco Umbrella Secure Web Gateway 
service could ...)
        NOT-FOR-US: Cisco
 CVE-2022-20737 (A vulnerability in the handler for HTTP authentication for 
resources a ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20736
        RESERVED
 CVE-2022-20735 (A vulnerability in the web-based management interface of Cisco 
SD-WAN  ...)
@@ -35051,9 +35051,9 @@ CVE-2022-20732 (A vulnerability in the configuration 
file protections of Cisco V
 CVE-2022-20731 (Multiple vulnerabilities that affect Cisco Catalyst Digital 
Building S ...)
        NOT-FOR-US: Cisco
 CVE-2022-20730 (A vulnerability in the Security Intelligence feed feature of 
Cisco Fir ...)
-       TODO: check
+       NOT-FOR-US: Cisco Firepower
 CVE-2022-20729 (A vulnerability in CLI of Cisco Firepower Threat Defense (FTD) 
Softwar ...)
-       TODO: check
+       NOT-FOR-US: Cisco Firepower
 CVE-2022-20728
        RESERVED
 CVE-2022-20727 (Multiple vulnerabilities in the Cisco IOx application hosting 
environm ...)
@@ -35081,7 +35081,7 @@ CVE-2022-20717 (A vulnerability in the NETCONF process 
of Cisco SD-WAN vEdge Rou
 CVE-2022-20716 (A vulnerability in the CLI of Cisco SD-WAN Software could 
allow an aut ...)
        NOT-FOR-US: Cisco
 CVE-2022-20715 (A vulnerability in the remote access SSL VPN features of Cisco 
Adaptiv ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2022-20714 (A vulnerability in the data plane microcode of Lightspeed-Plus 
line ca ...)
        NOT-FOR-US: Cisco
 CVE-2022-20713
@@ -35258,11 +35258,11 @@ CVE-2022-20631
 CVE-2022-20630 (A vulnerability in the audit log of Cisco DNA Center could 
allow an au ...)
        NOT-FOR-US: Cisco
 CVE-2022-20629 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
-       TODO: check
+       NOT-FOR-US: Cisco Firepower
 CVE-2022-20628 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
-       TODO: check
+       NOT-FOR-US: Cisco Firepower
 CVE-2022-20627 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
-       TODO: check
+       NOT-FOR-US: Cisco Firepower
 CVE-2022-20626
        RESERVED
 CVE-2022-20625 (A vulnerability in the Cisco Discovery Protocol service of 
Cisco FXOS  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/637c3f522e904be1e0798eef62de8e4c409abec5

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/637c3f522e904be1e0798eef62de8e4c409abec5
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to