Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
852b2c47 by Salvatore Bonaccorso at 2022-06-24T23:28:49+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -303,17 +303,17 @@ CVE-2022-2187
CVE-2022-2186
RESERVED
CVE-2017-20097 (A vulnerability was found in WP-Filebase Download Manager
Plugin 3.4.4 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20096 (A vulnerability classified as problematic has been found in
WP-SpamFre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20095 (A vulnerability classified as critical was found in Simple Ads
Manager ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20094 (A vulnerability, which was classified as problematic, has been
found i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20093 (A vulnerability, which was classified as problematic, was
found in Dow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2017-20092 (A vulnerability classified as problematic was found in Google
Analytic ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-34343
RESERVED
CVE-2022-34342
@@ -1428,11 +1428,11 @@ CVE-2022-2123
CVE-2022-2122
RESERVED
CVE-2022-2121 (OFFIS DCMTK's (All versions prior to 3.6.7) has a NULL pointer
derefer ...)
- TODO: check
+ NOT-FOR-US: OFFIS DCMTK
CVE-2022-2120 (OFFIS DCMTK's (All versions prior to 3.6.7) service class user
(SCU) i ...)
- TODO: check
+ NOT-FOR-US: OFFIS DCMTK
CVE-2022-2119 (OFFIS DCMTK's (All versions prior to 3.6.7) service class
provider (SC ...)
- TODO: check
+ NOT-FOR-US: OFFIS DCMTK
CVE-2022-2118
RESERVED
CVE-2014-125025 (A vulnerability classified as problematic has been found in
FFmpeg 2.0 ...)
@@ -1656,13 +1656,13 @@ CVE-2022-2107
CVE-2022-2106
RESERVED
CVE-2022-2105 (Client-side JavaScript controls may be bypassed to change user
credent ...)
- TODO: check
+ NOT-FOR-US: Secheron
CVE-2022-2104 (The www-data (Apache web server) account is configured to run
sudo wit ...)
- TODO: check
+ NOT-FOR-US: Secheron
CVE-2022-2103 (An attacker with weak credentials could access the TCP port via
an ope ...)
- TODO: check
+ NOT-FOR-US: Secheron
CVE-2022-2102 (Controls limiting uploads to certain file extensions may be
bypassed. ...)
- TODO: check
+ NOT-FOR-US: Secheron
CVE-2022-2101
RESERVED
CVE-2022-33880
@@ -4657,7 +4657,7 @@ CVE-2022-2015 (Cross-site Scripting (XSS) - Stored in
GitHub repository jgraph/d
CVE-2022-2014 (Code Injection in GitHub repository jgraph/drawio prior to
19.0.2. ...)
NOT-FOR-US: jgraph/drawio
CVE-2022-32530 (A CWE-668 Exposure of Resource to Wrong Sphere vulnerability
exists th ...)
- TODO: check
+ NOT-FOR-US: Geo SCADA Mobile
CVE-2022-32529
RESERVED
CVE-2022-32528
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/852b2c4742eeded63b76b826cb6c1456315f92cd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/852b2c4742eeded63b76b826cb6c1456315f92cd
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
