Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a5aa3676 by Salvatore Bonaccorso at 2022-11-16T21:29:03+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -67,15 +67,15 @@ CVE-2022-4017
CVE-2022-4016
RESERVED
CVE-2022-4015 (A vulnerability, which was classified as critical, was found in
Sports ...)
- TODO: check
+ NOT-FOR-US: Sports Club Management System
CVE-2022-4014 (A vulnerability, which was classified as problematic, has been
found i ...)
- TODO: check
+ NOT-FOR-US: FeehiCMS
CVE-2022-4013 (A vulnerability classified as problematic was found in Hospital
Manage ...)
- TODO: check
+ NOT-FOR-US: Hospital Management Center
CVE-2022-4012 (A vulnerability classified as critical has been found in
Hospital Mana ...)
- TODO: check
+ NOT-FOR-US: Hospital Management Center
CVE-2022-4011 (A vulnerability was found in Simple History Plugin. It has been
rated ...)
- TODO: check
+ NOT-FOR-US: Simple History Plugin
CVE-2022-43468
RESERVED
CVE-2022-41783
@@ -934,7 +934,7 @@ CVE-2022-3982
CVE-2022-3981
RESERVED
CVE-2022-3980 (An XML External Entity (XEE) vulnerability allows server-side
request ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2022-37406
RESERVED
CVE-2022-45199 (Pillow before 9.3.0 allows denial of service via
SAMPLESPERPIXEL. ...)
@@ -4882,15 +4882,15 @@ CVE-2022-44075
CVE-2022-44074
RESERVED
CVE-2022-44073 (Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting
(XSS) via ...)
- TODO: check
+ NOT-FOR-US: Zenario CMS
CVE-2022-44072
RESERVED
CVE-2022-44071 (Zenario CMS 9.3.57186 is is vulnerable to Cross Site Scripting
(XSS) v ...)
- TODO: check
+ NOT-FOR-US: Zenario CMS
CVE-2022-44070 (Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting
(XSS) via ...)
- TODO: check
+ NOT-FOR-US: Zenario CMS
CVE-2022-44069 (Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting
(XSS) via ...)
- TODO: check
+ NOT-FOR-US: Zenario CMS
CVE-2022-44068
RESERVED
CVE-2022-44067
@@ -8805,11 +8805,11 @@ CVE-2022-43266
CVE-2022-43265 (An arbitrary file upload vulnerability in the component
/pages/save_us ...)
NOT-FOR-US: Canteen Management System
CVE-2022-43264 (Arobas Music Guitar Pro for iPad and iPhone before v1.10.2
allows atta ...)
- TODO: check
+ NOT-FOR-US: Arobas Music Guitar Pro for iPad and iPhone
CVE-2022-43263 (A cross-site scripting (XSS) vulnerability in Arobas Music
Guitar Pro ...)
- TODO: check
+ NOT-FOR-US: Arobas Music Guitar Pro for iPad and iPhone
CVE-2022-43262 (Human Resource Management System v1.0 was discovered to
contain a SQL ...)
- TODO: check
+ NOT-FOR-US: Human Resource Management System
CVE-2022-43261
RESERVED
CVE-2022-43260 (Tenda AC18 V15.03.05.19(6318) was discovered to contain a
stack overfl ...)
@@ -8821,7 +8821,7 @@ CVE-2022-43258
CVE-2022-43257
RESERVED
CVE-2022-43256 (SeaCms before v12.6 was discovered to contain a SQL injection
vulnerab ...)
- TODO: check
+ NOT-FOR-US: SeaCms
CVE-2022-43255 (GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to
contain a mem ...)
- gpac <unfixed> (unimportant)
NOTE: https://github.com/gpac/gpac/issues/2285
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5aa3676282f3e7f3af2b173b1e4d078de2637a9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5aa3676282f3e7f3af2b173b1e4d078de2637a9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
