[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Fri, 30 Sep 2022 01:13:23 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
18a7d776 by Salvatore Bonaccorso at 2022-09-30T10:12:40+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2022-41847 (An issue was discovered in Bento4 1.6.0-639. A memory leak 
exists in A ...)
-       TODO: check
+       NOT-FOR-US: Bento4
 CVE-2022-41846 (An issue was discovered in Bento4 1.6.0-639. There ie 
excessive memory ...)
-       TODO: check
+       NOT-FOR-US: Bento4
 CVE-2022-41845 (An issue was discovered in Bento4 1.6.0-639. There ie 
excessive memory ...)
-       TODO: check
+       NOT-FOR-US: Bento4
 CVE-2022-41844 (An issue was discovered in Xpdf 4.04. There is a crash in 
XRef::fetch( ...)
        TODO: check
 CVE-2022-41843 (An issue was discovered in Xpdf 4.04. There is a crash in 
convertToTyp ...)
@@ -11,7 +11,7 @@ CVE-2022-41843 (An issue was discovered in Xpdf 4.04. There 
is a crash in conver
 CVE-2022-41842 (An issue was discovered in Xpdf 4.04. There is a crash in 
gfseek(_IO_F ...)
        TODO: check
 CVE-2022-41841 (An issue was discovered in Bento4 through 1.6.0-639. A NULL 
pointer de ...)
-       TODO: check
+       NOT-FOR-US: Bento4
 CVE-2022-41829
        RESERVED
 CVE-2022-41828 (In Amazon AWS Redshift JDBC Driver (aka 
amazon-redshift-jdbc-driver or ...)
@@ -6110,7 +6110,7 @@ CVE-2022-39234
 CVE-2022-39233
        RESERVED
 CVE-2022-39232 (Discourse is an open source discussion platform. Starting with 
version ...)
-       TODO: check
+       NOT-FOR-US: Discourse
 CVE-2022-39231 (Parse Server is an open source backend that can be deployed to 
any inf ...)
        TODO: check
 CVE-2022-39230 (fhir-works-on-aws-authz-smart is an implementation of the 
authorizatio ...)
@@ -6122,7 +6122,7 @@ CVE-2022-39228
 CVE-2022-39227 (python-jwt is a module for generating and verifying JSON Web 
Tokens. V ...)
        NOT-FOR-US: python-jwt (not the same as src:pyjwt)
 CVE-2022-39226 (Discourse is an open source discussion platform. In versions 
prior to  ...)
-       TODO: check
+       NOT-FOR-US: Discourse
 CVE-2022-39225 (Parse Server is an open source backend that can be deployed to 
any inf ...)
        NOT-FOR-US: Node parse-server
 CVE-2022-39224 (Arr-pm is an RPM reader/writer library written in Ruby. 
Versions prior ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18a7d7768cf96cd1204d8d7d0470254b4f51b46f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18a7d7768cf96cd1204d8d7d0470254b4f51b46f
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to