[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) Fri, 27 May 2022 04:28:08 -0700


Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
4108bdf6 by Neil Williams at 2022-05-27T12:27:30+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13933,7 +13933,7 @@ CVE-2022-26867
 CVE-2022-26866
        RESERVED
 CVE-2022-26865 (Dell Support Assist OS Recovery versions before 5.5.2 contain 
an Authe ...)
-       TODO: check
+       NOT-FOR-US: Dell SupportAssist
 CVE-2022-26864
        RESERVED
 CVE-2022-26863
@@ -13949,7 +13949,7 @@ CVE-2022-26859
 CVE-2022-26858
        RESERVED
 CVE-2022-26857 (Dell OpenManage Enterprise Versions 3.8.3 and prior contain an 
imprope ...)
-       TODO: check
+       NOT-FOR-US: Dell OpenManage Enterprise
 CVE-2022-26856 (Dell EMC Repository Manager version 3.4.0 contains a 
plain-text passwo ...)
        NOT-FOR-US: EMC
 CVE-2022-26855 (Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contains an 
incorrect d ...)
@@ -20801,7 +20801,7 @@ CVE-2022-24424 (Dell EMC AppSync versions from 3.9 to 
4.3 contain a path travers
 CVE-2022-24423 (Dell EMC iDRAC8 versions 2.81.81 and earlier contain a denial 
of servi ...)
        NOT-FOR-US: EMC
 CVE-2022-24422 (Dell iDRAC9 versions 5.00.00.00 and later but prior to 
5.10.10.00, con ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2022-24421 (Dell BIOS contains an improper input validation vulnerability. 
A local ...)
        NOT-FOR-US: Dell
 CVE-2022-24420 (Dell BIOS contains an improper input validation vulnerability. 
A local ...)
@@ -20809,9 +20809,9 @@ CVE-2022-24420 (Dell BIOS contains an improper input 
validation vulnerability. A
 CVE-2022-24419 (Dell BIOS contains an improper input validation vulnerability. 
A local ...)
        NOT-FOR-US: Dell
 CVE-2022-24418 (Dell BIOS contains an improper input validation vulnerability. 
A local ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2022-24417 (Dell BIOS contains an improper input validation vulnerability. 
A local ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2022-24416 (Dell BIOS contains an improper input validation vulnerability. 
A local ...)
        NOT-FOR-US: Dell
 CVE-2022-24415 (Dell BIOS contains an improper input validation vulnerability. 
A local ...)
@@ -27626,15 +27626,15 @@ CVE-2021-4200 (A Improper Privilege Management 
vulnerability in SUSE Rancher all
 CVE-2022-22677
        RESERVED
 CVE-2022-22676 (An event handler validation issue in the XPC Services API was 
addresse ...)
-       TODO: check
+       NOT-FOR-US: Apple
 CVE-2022-22675 (An out-of-bounds write issue was addressed with improved 
bounds checki ...)
-       TODO: check
+       NOT-FOR-US: Apple
 CVE-2022-22674 (An out-of-bounds read issue existed that led to the disclosure 
of kern ...)
-       TODO: check
+       NOT-FOR-US: Apple
 CVE-2022-22673 (This issue was addressed with improved checks. This issue is 
fixed in  ...)
-       TODO: check
+       NOT-FOR-US: Apple
 CVE-2022-22672 (A memory corruption issue was addressed with improved memory 
handling. ...)
-       TODO: check
+       NOT-FOR-US: Apple
 CVE-2022-22671 (An authentication issue was addressed with improved state 
management.  ...)
        NOT-FOR-US: Apple
 CVE-2022-22670 (An access issue was addressed with improved access 
restrictions. This  ...)
@@ -27652,9 +27652,9 @@ CVE-2022-22665 (A logic issue was addressed with 
improved validation. This issue
 CVE-2022-22664 (An out-of-bounds read was addressed with improved bounds 
checking. Thi ...)
        NOT-FOR-US: Apple
 CVE-2022-22663 (This issue was addressed with improved checks to prevent 
unauthorized  ...)
-       TODO: check
+       NOT-FOR-US: Apple
 CVE-2022-22662 (A cookie management issue was addressed with improved state 
management ...)
-       TODO: check
+       NOT-FOR-US: Apple
 CVE-2022-22661 (A type confusion issue was addressed with improved state 
handling. Thi ...)
        NOT-FOR-US: Apple
 CVE-2022-22660 (This issue was addressed with a new entitlement. This issue is 
fixed i ...)
@@ -27770,7 +27770,7 @@ CVE-2022-22618 (This issue was addressed with improved 
checks. This issue is fix
 CVE-2022-22617 (A logic issue was addressed with improved state management. 
This issue ...)
        NOT-FOR-US: Apple
 CVE-2022-22616 (This issue was addressed with improved checks. This issue is 
fixed in  ...)
-       TODO: check
+       NOT-FOR-US: Apple
 CVE-2022-22615 (A use after free issue was addressed with improved memory 
management.  ...)
        NOT-FOR-US: Apple
 CVE-2022-22614 (A use after free issue was addressed with improved memory 
management.  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4108bdf6fe924a4749a5356ead23c2e861f78dd2

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4108bdf6fe924a4749a5356ead23c2e861f78dd2
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to