[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Apr 13 09:28:42 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b058c68f by Salvatore Bonaccorso at 2021-04-13T10:27:27+02:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3540,7 +3540,7 @@ CVE-2021-29056
 CVE-2021-29055
 	RESERVED
 CVE-2021-29054 (Certain Papoo products are affected by: Cross Site Request Forgery (CS ...)
-	TODO: check
+	NOT-FOR-US: Papoo
 CVE-2021-29053
 	RESERVED
 CVE-2021-29052
@@ -3642,7 +3642,7 @@ CVE-2021-29005
 CVE-2021-29004
 	RESERVED
 CVE-2021-29003 (Genexis PLATINUM 4410 2.1 P4410-V2-1.28 devices allow remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Genexis devices
 CVE-2021-29002 (A stored cross-site scripting (XSS) vulnerability in Plone CMS 5.2.3 e ...)
 	NOT-FOR-US: Plone
 CVE-2021-29001
@@ -3815,7 +3815,7 @@ CVE-2021-28940 (Because of a incorrect escaped exec command in MagpieRSS in 0.72
 CVE-2021-28939
 	RESERVED
 CVE-2021-28938 (Siren Federate before 6.8.14-10.3.9, 6.9.x through 7.6.x before 7.6.2- ...)
-	TODO: check
+	NOT-FOR-US: Siren Federate
 CVE-2021-28937 (The /password.html page of the Web management interface of the Acexy W ...)
 	NOT-FOR-US: Acexy Wireless-N WiFi Repeater
 CVE-2021-28936 (The Acexy Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) Web management ...)
@@ -12530,7 +12530,7 @@ CVE-2021-3165 (SmartAgent 3.1.0 allows a ViewOnly attacker to create a SuperUser
 CVE-2021-3164 (ChurchRota 2.6.4 is vulnerable to authenticated remote code execution. ...)
 	NOT-FOR-US: ChurchRota
 CVE-2021-3163 (A vulnerability in the HTML editor of Slab Quill 4.8.0 allows an attac ...)
-	TODO: check
+	NOT-FOR-US: Slab Quill
 CVE-2021-25301
 	RESERVED
 CVE-2021-25300
@@ -20639,7 +20639,7 @@ CVE-2021-21547
 CVE-2021-21546
 	RESERVED
 CVE-2021-21545 (Dell Peripheral Manager 1.3.1 or greater contains remediation for a lo ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2021-21544
 	RESERVED
 CVE-2021-21543
@@ -20681,7 +20681,7 @@ CVE-2021-21526
 CVE-2021-21525
 	RESERVED
 CVE-2021-21524 (Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5. ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2021-21523
 	RESERVED
 CVE-2021-21522
@@ -117474,7 +117474,7 @@ CVE-2019-15061
 CVE-2019-15060 (The traceroute function on the TP-Link TL-WR840N v4 router with firmwa ...)
 	NOT-FOR-US: TP-Link
 CVE-2019-15059 (In Liberty lisPBX 2.0-4, configuration backup files can be retrieved r ...)
-	TODO: check
+	NOT-FOR-US: Liberty lisPBX
 CVE-2019-15058 (stb_image.h (aka the stb image loader) 2.23 has a heap-based buffer ov ...)
 	- libstb <unfixed> (bug #934973)
 	[bullseye] - libstb <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b058c68f9d8c8b3d3b19c54aef4115eccbd14f41

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b058c68f9d8c8b3d3b19c54aef4115eccbd14f41
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210413/1b39fb58/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list