Neil Williams pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9c634484 by Neil Williams at 2022-05-06T13:07:51+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10143,7 +10143,7 @@ CVE-2022-0884 (The Profile Builder WordPress plugin
before 3.6.8 does not saniti
CVE-2022-0883
RESERVED
CVE-2022-0882 (A bug exists where an attacker can read the kernel log through
exposed ...)
- TODO: check
+ NOT-FOR-US: Google fuchsia
CVE-2022-0881 (Insecure Storage of Sensitive Information in GitHub repository
chocobo ...)
- peertube <itp> (bug #950821)
CVE-2022-26847 (SPIP before 3.2.14 and 4.x before 4.0.5 allows unauthenticated
access ...)
@@ -30890,7 +30890,7 @@ CVE-2022-21745
CVE-2022-21744
RESERVED
CVE-2022-21743 (In ion, there is a possible use after free due to an integer
overflow. ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2021-44230 (PortSwigger Burp Suite Enterprise Edition before 2021.11 on
Windows ha ...)
NOT-FOR-US: Burp Suite (different from src:burp)
CVE-2021-44229
@@ -39247,61 +39247,61 @@ CVE-2021-42330 (The “Teacher Edit”
function of ShinHer StudyOnline S
CVE-2021-42329 (The “List_Add” function of message board of
ShinHer StudyO ...)
NOT-FOR-US: ShinHer StudyOnline System
CVE-2022-20111 (In ion, there is a possible use after free due to incorrect
error hand ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20110 (In ion, there is a possible use after free due to a race
condition. Th ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20109 (In ion, there is a possible use after free due to improper
update of r ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20108 (In voice service, there is a possible out of bounds write due
to a sta ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20107 (In subtitle service, there is a possible application crash due
to an i ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20106 (In MM service, there is a possible out of bounds write due to
a heap-b ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20105 (In MM service, there is a possible out of bounds write due to
a stack- ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20104 (In aee daemon, there is a possible information disclosure due
to impro ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20103 (In aee daemon, there is a possible information disclosure due
to symbo ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20102 (In aee daemon, there is a possible information disclosure due
to a mis ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20101 (In aee daemon, there is a possible information disclosure due
to a pat ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20100 (In aee daemon, there is a possible information disclosure due
to a mis ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20099 (In aee daemon, there is a possible out of bounds write due to
improper ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20098 (In aee daemon, there is a possible information disclosure due
to a mis ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20097 (In aee daemon, there is a possible information disclosure due
to a rac ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20096 (In camera, there is a possible information disclosure due to
uninitial ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20095 (In imgsensor, there is a possible out of bounds write due to a
missing ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20094 (In imgsensor, there is a possible out of bounds write due to
an incorr ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20093 (In telephony, there is a possible way to disable receiving SMS
message ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20092 (In alac decoder, there is a possible out of bounds read due to
a missi ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20091 (In aee driver, there is a possible use after free due to a
race condit ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20090 (In aee driver, there is a possible use after free due to a
race condit ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20089 (In aee driver, there is a possible memory corruption due to
active deb ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20088 (In aee driver, there is a possible reference count mistake due
to inco ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20087 (In ccu, there is a possible out of bounds write due to a
missing bound ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20086
RESERVED
CVE-2022-20085 (In netdiag, there is a possible symbolic link following due to
an impr ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20084 (In telephony, there is a possible way to disable receiving
emergency b ...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2022-20083
RESERVED
CVE-2022-20082
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c63448469593a35fba98f3e393f2aa0750491b0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c63448469593a35fba98f3e393f2aa0750491b0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
