Neil Williams pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ed304e89 by Neil Williams at 2022-05-19T10:58:00+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3554,7 +3554,7 @@ CVE-2022-29873 (A vulnerability has been identified in
SICAM P850 (All versions
CVE-2022-29872 (A vulnerability has been identified in SICAM P850 (All
versions < V ...)
NOT-FOR-US: Siemens
CVE-2022-29518 (Screen Creator Advance2, HMI GC-A2 series, and Real time
remote monito ...)
- TODO: check
+ NOT-FOR-US: Koyo Screen Creator Advance2
CVE-2022-29513
RESERVED
CVE-2022-29484
@@ -4942,7 +4942,7 @@ CVE-2022-29447
CVE-2022-29446
RESERVED
CVE-2022-29445 (Authenticated (administrator or higher role) Local File
Inclusion (LFI ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-29444 (Plugin Settings Change leading to Cross-Site Scripting (XSS)
vulnerabi ...)
NOT-FOR-US: WordPress plugin
CVE-2022-29443
@@ -5123,7 +5123,7 @@ CVE-2022-29370
CVE-2022-29369 (Nginx NJS v0.7.2 was discovered to contain a segmentation
violation vi ...)
NOT-FOR-US: njs
CVE-2022-29368 (Moddable commit before
135aa9a4a6a9b49b60aa730ebc3bcc6247d75c45 was di ...)
- TODO: check
+ NOT-FOR-US: Moddable SDK
CVE-2022-29367
RESERVED
CVE-2022-29366
@@ -5133,7 +5133,7 @@ CVE-2022-29365
CVE-2022-29364
RESERVED
CVE-2022-29363 (Phpok v6.1 was discovered to contain a deserialization
vulnerability v ...)
- TODO: check
+ NOT-FOR-US: qinggan phpok
CVE-2022-29362
RESERVED
CVE-2022-29361
@@ -5151,9 +5151,9 @@ CVE-2022-29356
CVE-2022-29355
RESERVED
CVE-2022-29354 (An arbitrary file upload vulnerability in the file upload
module of Ke ...)
- TODO: check
+ NOT-FOR-US: keystonejs/keystone
CVE-2022-29353 (An arbitrary file upload vulnerability in the file upload
module of Gr ...)
- TODO: check
+ NOT-FOR-US: jaydenseric/graphql-upload
CVE-2022-29352
RESERVED
CVE-2022-29351 (An arbitrary file upload vulnerability in the file upload
module of Ti ...)
@@ -5502,9 +5502,9 @@ CVE-2022-29232
CVE-2022-29231
RESERVED
CVE-2022-29230 (Hydrogen is a React-based framework for building dynamic,
Shopify-powe ...)
- TODO: check
+ NOT-FOR-US: Shopify/hydrogen
CVE-2022-29229 (CaSS is a Competency and Skills System. CaSS Library,
(npm:cassproject ...)
- TODO: check
+ NOT-FOR-US: cassproject/CASS
CVE-2022-29228
RESERVED
CVE-2022-29227
@@ -5526,7 +5526,7 @@ CVE-2022-29220
CVE-2022-29219
RESERVED
CVE-2022-29218 (RubyGems is a package registry used to supply software for the
Ruby la ...)
- TODO: check
+ NOT-FOR-US: rubygems/rubygems.org
CVE-2022-29217
RESERVED
CVE-2022-29216
@@ -5610,7 +5610,7 @@ CVE-2022-29178
CVE-2022-29177
RESERVED
CVE-2022-29176 (Rubygems is a package registry used to supply software for the
Ruby la ...)
- TODO: check
+ NOT-FOR-US: rubygems/rubygems.org
CVE-2022-29175
REJECTED
CVE-2022-29174 (countly-server is the server-side part of Countly, a product
analytics ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ed304e8900f681760cecf63da519d46d0c6db448
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ed304e8900f681760cecf63da519d46d0c6db448
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
