[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Apr 13 21:52:42 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0679f48 by Salvatore Bonaccorso at 2021-04-13T22:52:31+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18108,15 +18108,15 @@ CVE-2021-22722
 CVE-2021-22721
 	RESERVED
 CVE-2021-22720 (A CWE-22: Improper Limitation of a Pathname to a Restricted Directory  ...)
-	TODO: check
+	NOT-FOR-US: Schneider Electric
 CVE-2021-22719 (A CWE-22: Improper Limitation of a Pathname to a Restricted Directory  ...)
-	TODO: check
+	NOT-FOR-US: Schneider Electric
 CVE-2021-22718 (A CWE-22: Improper Limitation of a Pathname to a Restricted Directory  ...)
-	TODO: check
+	NOT-FOR-US: Schneider Electric
 CVE-2021-22717 (A CWE-22: Improper Limitation of a Pathname to a Restricted Directory  ...)
-	TODO: check
+	NOT-FOR-US: Schneider Electric
 CVE-2021-22716 (A CWE-269: Improper Privilege Management vulnerability exists in C-Bus ...)
-	TODO: check
+	NOT-FOR-US: Schneider Electric
 CVE-2021-22715
 	RESERVED
 CVE-2021-22714 (A CWE-119:Improper restriction of operations within the bounds of a me ...)
@@ -37868,13 +37868,13 @@ CVE-2020-27238
 CVE-2020-27237
 	RESERVED
 CVE-2020-27236 (An exploitable SQL injection vulnerability exists in ‘getAssets. ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic
 CVE-2020-27235 (An exploitable SQL injection vulnerability exists in ‘getAssets. ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic
 CVE-2020-27234 (An exploitable SQL injection vulnerability exists in ‘getAssets. ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic
 CVE-2020-27233 (An exploitable SQL injection vulnerability exists in ‘getAssets. ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic
 CVE-2020-27232
 	RESERVED
 CVE-2020-27231
@@ -37884,9 +37884,9 @@ CVE-2020-27230
 CVE-2020-27229
 	RESERVED
 CVE-2020-27228 (An incorrect default permissions vulnerability exists in the installat ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic
 CVE-2020-27227 (An exploitable unatuhenticated command injection exists in the OpenCli ...)
-	TODO: check
+	NOT-FOR-US: OpenClinic
 CVE-2020-27226
 	RESERVED
 CVE-2020-27225 (In versions 4.18 and earlier of the Eclipse Platform, the Help Subsyst ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0679f48f25d91653288458abda3ef7f5aa866bf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0679f48f25d91653288458abda3ef7f5aa866bf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210413/8b5f65e5/attachment.htm>

More information about the debian-security-tracker-commits mailing list