[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
90fe230e by Salvatore Bonaccorso at 2022-09-29T22:50:29+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1708,11 +1708,11 @@ CVE-2022-3242 (Code Injection in GitHub repository 
microweber/microweber prior t
 CVE-2022-3241
        RESERVED
 CVE-2017-20148 (In the ebuild package through logcheck-1.3.23.ebuild for 
Logcheck on G ...)
-       TODO: check
+       NOT-FOR-US: ebuild package for Logcheck on Gentoo
 CVE-2017-20147 (In the ebuild package through smokeping-2.7.3-r1 for SmokePing 
on Gent ...)
-       TODO: check
+       NOT-FOR-US: ebuild package for SmokePing on Gentoo
 CVE-2016-20015 (In the ebuild package through smokeping-2.7.3-r1 for SmokePing 
on Gent ...)
-       TODO: check
+       NOT-FOR-US: ebuild package for SmokePing on Gentoo
 CVE-2022-41131
        RESERVED
 CVE-2022-41130
@@ -2153,7 +2153,7 @@ CVE-2022-40933 (Online Pet Shop We App v1.0 by oretnom23 
is vulnerable to SQL in
 CVE-2022-40932 (In Zoo Management System v1.0, there is an arbitrary file 
upload vulne ...)
        NOT-FOR-US: Zoo Management System
 CVE-2022-40931 (dutchcoders Transfer.sh 1.4.0 is vulnerable to Cross Site 
Scripting (X ...)
-       TODO: check
+       NOT-FOR-US: dutchcoders Transfer.sh
 CVE-2022-40930
        RESERVED
 CVE-2022-40929 (XXL-JOB 2.2.0 has a Command execution vulnerability in 
background task ...)
@@ -2235,13 +2235,13 @@ CVE-2022-40892
 CVE-2022-40891
        RESERVED
 CVE-2022-40890 (A vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 
and earlie ...)
-       TODO: check
+       NOT-FOR-US: Open5GS
 CVE-2022-40889
        RESERVED
 CVE-2022-40888
        RESERVED
 CVE-2022-40887 (SourceCodester Best Student Result Management System 1.0 is 
vulnerable ...)
-       TODO: check
+       NOT-FOR-US: SourceCodester Best Student Result Management System
 CVE-2022-40886
        RESERVED
 CVE-2022-40885
@@ -3272,13 +3272,13 @@ CVE-2022-40476 (A null pointer dereference issue was 
discovered in fs/io_uring.c
        NOTE: 
https://lore.kernel.org/lkml/cao4s-mdvw5gkodk0+vbqexnaajzopwzfj9acvrcj989fq4a...@mail.gmail.com/
        NOTE: 
https://git.kernel.org/linus/386e4fb6962b9f248a80f8870aea0870ca603e89 (5.19-rc4)
 CVE-2022-40475 (TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to 
contain a com ...)
-       TODO: check
+       NOT-FOR-US: TOTOLINK
 CVE-2022-40474
        RESERVED
 CVE-2022-40473
        RESERVED
 CVE-2022-40472 (ZKTeco Xiamen Information Technology ZKBio Time 8.0.7 Build: 
20220721. ...)
-       TODO: check
+       NOT-FOR-US: ZKTeco Xiamen Information Technology ZKBio Time
 CVE-2022-40471
        RESERVED
 CVE-2022-40470
@@ -3409,9 +3409,9 @@ CVE-2022-40410
 CVE-2022-40409
        RESERVED
 CVE-2022-40408 (FeehiCMS v2.1.1 was discovered to contain a cross-site 
scripting (XSS) ...)
-       TODO: check
+       NOT-FOR-US: FeehiCMS
 CVE-2022-40407 (A zip slip vulnerability in the file upload function of 
Chamilo v1.11  ...)
-       TODO: check
+       NOT-FOR-US: Chamilo LMS
 CVE-2022-40406
        RESERVED
 CVE-2022-40405



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90fe230e79862efa7e5ed53539971527f1ffe1d5

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90fe230e79862efa7e5ed53539971527f1ffe1d5
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits