[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c796e08 by Moritz Muehlenhoff at 2021-04-19T13:09:06+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -36241,47 +36241,47 @@ CVE-2021-0447
 	- linux 4.15.4-1
 	[stretch] - linux 4.9.228-1
 CVE-2021-0446 (In ImportVCardActivity, there is a possible way to bypass user consent ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0445 (In start of WelcomeActivity.java, there is a possible residual profile ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0444 (In onActivityResult of QuickContactActivity.java, there is an unnecess ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0443 (In several functions of ScreenshotHelper.java and related files, there ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0442 (In updateInfo of android_hardware_input_InputApplicationHandle.cpp, th ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0441
 	RESERVED
 CVE-2021-0440
 	RESERVED
 CVE-2021-0439 (In setPowerModeWithHandle of com_android_server_power_PowerManagerServ ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0438 (In several functions of InputDispatcher.cpp, WindowManagerService.java ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0437 (In setPlayPolicy of DrmPlugin.cpp, there is a possible double free. Th ...)
-	TODO: check
+	NOT-FOR-US: Android media framework
 CVE-2021-0436 (In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out  ...)
-	TODO: check
+	NOT-FOR-US: Android media framework
 CVE-2021-0435 (In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak o ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0434
 	RESERVED
 CVE-2021-0433 (In onCreate of DeviceChooserActivity.java, there is a possible way to  ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0432 (In ClearPullerCacheIfNecessary and ForceClearPullerCache of StatsPulle ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0431 (In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds re ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0430 (In rw_mfc_handle_read_op of rw_mfc.cc, there is a possible out of boun ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0429 (In pollOnce of ALooper.cpp, there is possible memory corruption due to ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0428 (In getSimSerialNumber of TelephonyManager.java, there is a possible wa ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0427 (In parseExclusiveStateAnnotation of LogEvent.cpp, there is a possible  ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0426 (In parsePrimaryFieldFirstUidAnnotation of LogEvent.cpp, there is a pos ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0425
 	RESERVED
 CVE-2021-0424
@@ -36333,7 +36333,7 @@ CVE-2021-0402 (In jpeg, there is a possible out of bounds write due to improper
 CVE-2021-0401 (In vow, there is a possible memory corruption due to a race condition. ...)
 	NOT-FOR-US: MediaTek
 CVE-2021-0400 (In injectBestLocation and handleUpdateLocation of GnssLocationProvider ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-0399 (In qtaguid_untag of xt_qtaguid.c, there is a possible memory corruptio ...)
 	- linux <not-affected> (Android-specific xt_qtaguid code)
 	NOTE: https://source.android.com/security/bulletin/2021-03-01



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c796e082e66ebf617c01439ce12f2b2f08bc76c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c796e082e66ebf617c01439ce12f2b2f08bc76c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210419/85a53c45/attachment.htm>