[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
jmm at debian.org
Fri Apr 23 14:16:13 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a19b50b9 by Moritz Muehlenhoff at 2021-04-23T15:15:27+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -110,27 +110,27 @@ CVE-2021-31557
CVE-2021-31556
RESERVED
CVE-2021-31555 (An issue was discovered in the Oauth extension for MediaWiki through 1 ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension OAuth
CVE-2021-31554 (An issue was discovered in the AbuseFilter extension for MediaWiki thr ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2021-31553 (An issue was discovered in the CheckUser extension for MediaWiki throu ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension CheckUser
CVE-2021-31552 (An issue was discovered in the AbuseFilter extension for MediaWiki thr ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2021-31551 (An issue was discovered in the PageForms extension for MediaWiki throu ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension PageForms
CVE-2021-31550 (An issue was discovered in the CommentBox extension for MediaWiki thro ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension CommentBox
CVE-2021-31549 (An issue was discovered in the AbuseFilter extension for MediaWiki thr ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2021-31548 (An issue was discovered in the AbuseFilter extension for MediaWiki thr ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2021-31547 (An issue was discovered in the AbuseFilter extension for MediaWiki thr ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2021-31546 (An issue was discovered in the AbuseFilter extension for MediaWiki thr ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2021-31545 (An issue was discovered in the AbuseFilter extension for MediaWiki thr ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2021-31544
RESERVED
CVE-2021-31543
@@ -183,7 +183,7 @@ CVE-2021-23169 [Heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffer]
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28051
NOTE: https://github.com/AcademySoftwareFoundation/openexr/commit/ae6d203892cc9311917a7f4f05354ef792b3e58e
CVE-2020-36324 (Wikimedia Quarry analytics-quarry-web before 2020-12-15 allows Reflect ...)
- TODO: check
+ NOT-FOR-US: Wikimedia Quarry
CVE-2021-31524
RESERVED
CVE-2021-31522
@@ -4758,11 +4758,11 @@ CVE-2021-29469
CVE-2021-29468
RESERVED
CVE-2021-29467 (Wrongthink is an encrypted peer-to-peer chat program. A user could che ...)
- TODO: check
+ NOT-FOR-US: Wrongthink
CVE-2021-29466 (Discord-Recon is a bot for the Discord chat service. In versions of Di ...)
- TODO: check
+ NOT-FOR-US: Discord-Recon
CVE-2021-29465 (Discord-Recon is a bot for the Discord chat service. Versions of Disco ...)
- TODO: check
+ NOT-FOR-US: Discord-Recon
CVE-2021-29464
RESERVED
CVE-2021-29463
@@ -7689,7 +7689,7 @@ CVE-2021-28170
CVE-2021-28169
RESERVED
CVE-2021-28168 (Eclipse Jersey 2.28 to 2.33 and Eclipse Jersey 3.0.0 to 3.0.1 contains ...)
- TODO: check
+ NOT-FOR-US: Eclipse Jersey
CVE-2021-28167 (In Eclipse Openj9 to version 0.25.0, usage of the jdk.internal.reflect ...)
NOT-FOR-US: Eclipse OpenJ9
CVE-2021-28166 (In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated clien ...)
@@ -8839,7 +8839,7 @@ CVE-2021-3416 (A potential stack overflow via infinite loop issue was found in v
NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=8c92060d3c0248bd4d515719a35922cd2391b9b4
NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=8c552542b81e56ff532dd27ec6e5328954bdda73
CVE-2021-27736 (FusionAuth fusionauth-samlv2 before 0.5.4 allows XXE attacks via a for ...)
- TODO: check
+ NOT-FOR-US: fusionauth-samlv2
CVE-2021-27735
RESERVED
CVE-2021-27734
@@ -9585,7 +9585,7 @@ CVE-2021-27391
CVE-2021-27390
RESERVED
CVE-2021-27389 (A vulnerability has been identified in Opcenter Quality (All versions ...)
- TODO: check
+ NOT-FOR-US: Opcenter Quality
CVE-2021-27388
RESERVED
CVE-2021-27387
@@ -13906,9 +13906,9 @@ CVE-2021-25671
CVE-2021-25670 (A vulnerability has been identified in Tecnomatix RobotExpert (All ver ...)
NOT-FOR-US: Tecnomatix RobotExpert (Siemens)
CVE-2021-25669 (A vulnerability has been identified in SCALANCE X200-4P IRT (All versi ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-25668 (A vulnerability has been identified in SCALANCE X200-4P IRT (All versi ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2021-25667 (A vulnerability has been identified in RUGGEDCOM RM1224 (All versions ...)
NOT-FOR-US: Siemens
CVE-2021-25666 (A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 80 ...)
@@ -21554,7 +21554,7 @@ CVE-2021-22201 (An issue has been discovered in GitLab CE/EE affecting all versi
CVE-2021-22200 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
- gitlab <unfixed>
CVE-2021-22199 (An issue has been discovered in GitLab affecting all versions starting ...)
- TODO: check
+ - gitlab <unfixed>
CVE-2021-22198 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
- gitlab <unfixed>
CVE-2021-22197 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
@@ -26662,7 +26662,7 @@ CVE-2021-20592
CVE-2021-20591
RESERVED
CVE-2021-20590 (Improper authentication vulnerability in GOT2000 series GT27 model all ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2021-20589
RESERVED
CVE-2021-20588 (Improper handling of length parameter inconsistency vulnerability in M ...)
@@ -45064,9 +45064,9 @@ CVE-2020-25246
CVE-2020-25245 (A vulnerability has been identified in DIGSI 4 (All versions < V4.9 ...)
NOT-FOR-US: Siemens
CVE-2020-25244 (A vulnerability has been identified in LOGO! Soft Comfort (All version ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2020-25243 (A vulnerability has been identified in LOGO! Soft Comfort (All version ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2020-25242
RESERVED
CVE-2020-25241 (A vulnerability has been identified in SIMATIC MV400 family (All Versi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a19b50b925796c314c87b9d191bde46904969b24
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a19b50b925796c314c87b9d191bde46904969b24
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210423/0fb4c80c/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list