Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
49ab627a by Salvatore Bonaccorso at 2022-05-26T10:37:03+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3120,7 +3120,7 @@ CVE-2022-25976
CVE-2022-1670 (When generating a user invitation code in Octopus Server, the
validity ...)
NOT-FOR-US: Octopus Server
CVE-2022-1669 (A buffer overflow vulnerability has been detected in the
firewall func ...)
- TODO: check
+ NOT-FOR-US: Circutor
CVE-2022-1668
RESERVED
CVE-2022-1667
@@ -5742,9 +5742,9 @@ CVE-2022-29653
CVE-2022-29652 (Online Sports Complex Booking System 1.0 is vulnerable to SQL
Injectio ...)
NOT-FOR-US: Sourcecodester Online Sports Complex Booking System
CVE-2022-29651 (An arbitrary file upload vulnerability in the Select Image
function of ...)
- TODO: check
+ NOT-FOR-US: Online Food Ordering System
CVE-2022-29650 (Online Food Ordering System v1.0 was discovered to contain a
SQL injec ...)
- TODO: check
+ NOT-FOR-US: Online Food Ordering System
CVE-2022-29649
RESERVED
CVE-2022-29648
@@ -6453,7 +6453,7 @@ CVE-2022-29410 (Authenticated SQL Injection (SQLi)
vulnerability in Mufeng's Her
CVE-2022-29409
RESERVED
CVE-2022-29408 (Persistent Cross-Site Scripting (XSS) vulnerability in Vsourz
Digital' ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-29407
RESERVED
CVE-2022-29406
@@ -6492,7 +6492,7 @@ CVE-2022-1381 (global heap buffer overflow in skip_range
in GitHub repository vi
CVE-2022-29403
RESERVED
CVE-2022-29402 (TP-Link TL-WR840N EU v6.20 was discovered to contain insecure
protecti ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2022-29401
RESERVED
CVE-2022-29400
@@ -6536,9 +6536,9 @@ CVE-2022-29382
CVE-2022-29381
RESERVED
CVE-2022-29380 (Academy-LMS v4.3 was discovered to contain a stored cross-site
scripti ...)
- TODO: check
+ NOT-FOR-US: Academy-LMS
CVE-2022-29379 (Nginx NJS v0.7.3 was discovered to contain a stack overflow in
the fun ...)
- TODO: check
+ NOT-FOR-US: njs
CVE-2022-29378
RESERVED
CVE-2022-29377 (Totolink A3600R V4.1.2cu.5182_B20201102 was discovered to
contain a st ...)
@@ -6572,13 +6572,13 @@ CVE-2022-29364
CVE-2022-29363 (Phpok v6.1 was discovered to contain a deserialization
vulnerability v ...)
NOT-FOR-US: qinggan phpok
CVE-2022-29362 (A cross-site scripting (XSS) vulnerability in
/navigation/create?Paren ...)
- TODO: check
+ NOT-FOR-US: ZKEACMS
CVE-2022-29361 (Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0
and below ...)
TODO: check
CVE-2022-29360
RESERVED
CVE-2022-29359 (A stored cross-site scripting (XSS) vulnerability in
/scas/?page=clubs ...)
- TODO: check
+ NOT-FOR-US: School Club Application System
CVE-2022-29358 (epub2txt2 v2.04 was discovered to contain an integer overflow
via the ...)
TODO: check
CVE-2022-29357
@@ -6904,11 +6904,11 @@ CVE-2022-29255
CVE-2022-29254
RESERVED
CVE-2022-29253 (XWiki Platform is a generic wiki platform offering runtime
services fo ...)
- TODO: check
+ NOT-FOR-US: XWiki
CVE-2022-29252 (XWiki Platform Wiki UI Main Wiki is a package for managing
subwikis. S ...)
- TODO: check
+ NOT-FOR-US: XWiki
CVE-2022-29251 (XWiki Platform Flamingo Theme UI is a tool that allows
customization a ...)
- TODO: check
+ NOT-FOR-US: XWiki
CVE-2022-29250
RESERVED
CVE-2022-29249 (JavaEZ is a library that adds new functions to make Java
easier. A wea ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49ab627a0d5433dfed9d38a187167a767a9a712a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49ab627a0d5433dfed9d38a187167a767a9a712a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
