Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
90fe230e by Salvatore Bonaccorso at 2022-09-29T22:50:29+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1708,11 +1708,11 @@ CVE-2022-3242 (Code Injection in GitHub repository
microweber/microweber prior t
CVE-2022-3241
RESERVED
CVE-2017-20148 (In the ebuild package through logcheck-1.3.23.ebuild for
Logcheck on G ...)
- TODO: check
+ NOT-FOR-US: ebuild package for Logcheck on Gentoo
CVE-2017-20147 (In the ebuild package through smokeping-2.7.3-r1 for SmokePing
on Gent ...)
- TODO: check
+ NOT-FOR-US: ebuild package for SmokePing on Gentoo
CVE-2016-20015 (In the ebuild package through smokeping-2.7.3-r1 for SmokePing
on Gent ...)
- TODO: check
+ NOT-FOR-US: ebuild package for SmokePing on Gentoo
CVE-2022-41131
RESERVED
CVE-2022-41130
@@ -2153,7 +2153,7 @@ CVE-2022-40933 (Online Pet Shop We App v1.0 by oretnom23
is vulnerable to SQL in
CVE-2022-40932 (In Zoo Management System v1.0, there is an arbitrary file
upload vulne ...)
NOT-FOR-US: Zoo Management System
CVE-2022-40931 (dutchcoders Transfer.sh 1.4.0 is vulnerable to Cross Site
Scripting (X ...)
- TODO: check
+ NOT-FOR-US: dutchcoders Transfer.sh
CVE-2022-40930
RESERVED
CVE-2022-40929 (XXL-JOB 2.2.0 has a Command execution vulnerability in
background task ...)
@@ -2235,13 +2235,13 @@ CVE-2022-40892
CVE-2022-40891
RESERVED
CVE-2022-40890 (A vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10
and earlie ...)
- TODO: check
+ NOT-FOR-US: Open5GS
CVE-2022-40889
RESERVED
CVE-2022-40888
RESERVED
CVE-2022-40887 (SourceCodester Best Student Result Management System 1.0 is
vulnerable ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Best Student Result Management System
CVE-2022-40886
RESERVED
CVE-2022-40885
@@ -3272,13 +3272,13 @@ CVE-2022-40476 (A null pointer dereference issue was
discovered in fs/io_uring.c
NOTE:
https://lore.kernel.org/lkml/cao4s-mdvw5gkodk0+vbqexnaajzopwzfj9acvrcj989fq4a...@mail.gmail.com/
NOTE:
https://git.kernel.org/linus/386e4fb6962b9f248a80f8870aea0870ca603e89 (5.19-rc4)
CVE-2022-40475 (TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to
contain a com ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2022-40474
RESERVED
CVE-2022-40473
RESERVED
CVE-2022-40472 (ZKTeco Xiamen Information Technology ZKBio Time 8.0.7 Build:
20220721. ...)
- TODO: check
+ NOT-FOR-US: ZKTeco Xiamen Information Technology ZKBio Time
CVE-2022-40471
RESERVED
CVE-2022-40470
@@ -3409,9 +3409,9 @@ CVE-2022-40410
CVE-2022-40409
RESERVED
CVE-2022-40408 (FeehiCMS v2.1.1 was discovered to contain a cross-site
scripting (XSS) ...)
- TODO: check
+ NOT-FOR-US: FeehiCMS
CVE-2022-40407 (A zip slip vulnerability in the file upload function of
Chamilo v1.11 ...)
- TODO: check
+ NOT-FOR-US: Chamilo LMS
CVE-2022-40406
RESERVED
CVE-2022-40405
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90fe230e79862efa7e5ed53539971527f1ffe1d5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90fe230e79862efa7e5ed53539971527f1ffe1d5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
