[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Aug 12 09:23:39 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a41666a3 by Salvatore Bonaccorso at 2021-08-12T10:23:16+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,21 +3,21 @@ CVE-2021-38593 (Qt 5.0.0 through 6.1.2 has an out-of-bounds write in QOutlineMap
 CVE-2021-38592 (Wasm3 0.5.0 has a heap-based buffer overflow in op_Const64 (called fro ...)
 	TODO: check
 CVE-2021-38591 (An issue was discovered on LG mobile devices with Android OS P and Q s ...)
-	TODO: check
+	NOT-FOR-US: LG mobile devices
 CVE-2021-38590 (In cPanel before 96.0.8, weak permissions on web stats can lead to inf ...)
-	TODO: check
+	NOT-FOR-US: cPanel
 CVE-2021-38589 (In cPanel before 96.0.13, scripts/fix-cpanel-perl does not properly re ...)
-	TODO: check
+	NOT-FOR-US: cPanel
 CVE-2021-38588 (In cPanel before 96.0.13, fix_cpanel_perl lacks verification of the in ...)
-	TODO: check
+	NOT-FOR-US: cPanel
 CVE-2021-38587 (In cPanel before 96.0.13, scripts/fix-cpanel-perl mishandles the creat ...)
-	TODO: check
+	NOT-FOR-US: cPanel
 CVE-2021-38586 (In cPanel before 98.0.1, /scripts/cpan_config performs unsafe operatio ...)
-	TODO: check
+	NOT-FOR-US: cPanel
 CVE-2021-38585 (The WHM Locale Upload feature in cPanel before 98.0.1 allows unseriali ...)
-	TODO: check
+	NOT-FOR-US: cPanel
 CVE-2021-38584 (The WHM Locale Upload feature in cPanel before 98.0.1 allows XXE attac ...)
-	TODO: check
+	NOT-FOR-US: cPanel
 CVE-2021-38583
 	RESERVED
 CVE-2021-38582
@@ -37,19 +37,19 @@ CVE-2021-38576
 CVE-2021-38575
 	RESERVED
 CVE-2021-38574 (An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.  ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-38573 (An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.  ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-38572 (An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.  ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-38571 (An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.  ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-38570 (An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.  ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-38569 (An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.  ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-38568 (An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.  ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-38567 (An issue was discovered in Foxit PDF Editor before 11.0.1 and PDF Read ...)
 	TODO: check
 CVE-2021-38566 (An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Edit ...)
@@ -10895,9 +10895,9 @@ CVE-2021-3573
 CVE-2021-33795 (Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 produce incorr ...)
 	NOT-FOR-US: Foxit
 CVE-2021-33794 (Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 allow informat ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-33793 (Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2021-33792 (Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of ...)
 	NOT-FOR-US: Foxit
 CVE-2021-3572 [Don't split git references on unicode separators #9827]



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a41666a3a574cda4a36e69f84b7eacf292dfac7a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a41666a3a574cda4a36e69f84b7eacf292dfac7a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210812/a5a96c51/attachment.htm>
