[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Aug 13 22:01:01 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
69fcafdd by Salvatore Bonaccorso at 2021-08-13T23:00:33+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -800,7 +800,7 @@ CVE-2021-38304
 CVE-2021-38303
 	RESERVED
 CVE-2021-38302 (The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection. ...)
-	TODO: check
+	NOT-FOR-US: Newsletter extension for TYPO3
 CVE-2021-38301
 	RESERVED
 CVE-2021-38300
@@ -4197,23 +4197,23 @@ CVE-2021-36795 (A permission issue in the Cohesity Linux agent may allow privile
 CVE-2021-36794
 	RESERVED
 CVE-2021-36793 (The routes (aka Extbase Yaml Routes) extension before 2.1.1 for TYPO3, ...)
-	TODO: check
+	NOT-FOR-US: routes (aka Extbase Yaml Routes) extension for TYPO3
 CVE-2021-36792 (The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 has  ...)
-	TODO: check
+	NOT-FOR-US: dated_news (aka Dated News) extension for TYPO3
 CVE-2021-36791 (The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allo ...)
-	TODO: check
+	NOT-FOR-US: dated_news (aka Dated News) extension for TYPO3
 CVE-2021-36790 (The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allo ...)
-	TODO: check
+	NOT-FOR-US: dated_news (aka Dated News) extension for TYPO3
 CVE-2021-36789 (The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allo ...)
-	TODO: check
+	NOT-FOR-US: dated_news (aka Dated News) extension for TYPO3
 CVE-2021-36788 (The yoast_seo (aka Yoast SEO) extension before 7.2.3 for TYPO3 allows  ...)
-	TODO: check
+	NOT-FOR-US: yoast_seo (aka Yoast SEO) extension for TYPO3
 CVE-2021-36787 (The femanager extension before 5.5.1 and 6.x before 6.3.1 for TYPO3 al ...)
-	TODO: check
+	NOT-FOR-US: femanager extension for TYPO3
 CVE-2021-36786 (The miniorange_saml (aka Miniorange Saml) extension before 1.4.3 for T ...)
-	TODO: check
+	NOT-FOR-US: miniorange_saml (aka Miniorange Saml) extension for TYPO3
 CVE-2021-36785 (The miniorange_saml (aka Miniorange Saml) extension before 1.4.3 for T ...)
-	TODO: check
+	NOT-FOR-US: miniorange_saml (aka Miniorange Saml) extension for TYPO3
 CVE-2021-36784
 	RESERVED
 CVE-2021-36783
@@ -8690,7 +8690,7 @@ CVE-2021-34825 (Quassel through 0.13.1, when --require-ssl is enabled, launches
 CVE-2021-34824 (Istio (1.8.x, 1.9.0-1.9.5 and 1.10.0-1.10.1) contains a remotely explo ...)
 	NOT-FOR-US: Istio
 CVE-2021-34823 (The ON24 ScreenShare (aka DesktopScreenShare.app) plugin before 2.0 fo ...)
-	TODO: check
+	NOT-FOR-US: ON24 ScreenShare
 CVE-2021-34822
 	RESERVED
 CVE-2021-34821 (Cross Site Scripting (XSS) vulnerability exists in AAT Novus Managemen ...)
@@ -15128,7 +15128,7 @@ CVE-2021-32074 (HashiCorp vault-action (aka Vault GitHub Action) before 2.2.0 al
 CVE-2021-32073 (DedeCMS V5.7 SP2 contains a CSRF vulnerability that allows a remote at ...)
 	NOT-FOR-US: DedeCMS
 CVE-2021-32072 (The MiCollab Client Service component in Mitel MiCollab before 9.3 cou ...)
-	TODO: check
+	NOT-FOR-US: Mitel
 CVE-2021-32071 (The MiCollab Client service in Mitel MiCollab before 9.3 could allow a ...)
 	NOT-FOR-US: Mitel
 CVE-2021-32070 (The MiCollab Client Service component in Mitel MiCollab before 9.3 cou ...)
@@ -77016,19 +77016,19 @@ CVE-2020-18761
 CVE-2020-18760
 	RESERVED
 CVE-2020-18759 (An information disclosure vulnerability exists in the EPA protocol of  ...)
-	TODO: check
+	NOT-FOR-US: Dut Computer Control Engineering Co.'s PLC MAC1100
 CVE-2020-18758 (An issue in Dut Computer Control Engineering Co.'s PLC MAC1100 allows  ...)
-	TODO: check
+	NOT-FOR-US: Dut Computer Control Engineering Co.'s PLC MAC1100
 CVE-2020-18757 (An issue in Dut Computer Control Engineering Co.'s PLC MAC1100 allows  ...)
-	TODO: check
+	NOT-FOR-US: Dut Computer Control Engineering Co.'s PLC MAC1100
 CVE-2020-18756 (An arbitrary memory access vulnerability in the EPA protocol of Dut Co ...)
-	TODO: check
+	NOT-FOR-US: Dut Computer Control Engineering Co.'s PLC MAC1100
 CVE-2020-18755
 	RESERVED
 CVE-2020-18754 (An information disclosure vulnerability exists within Dut Computer Con ...)
-	TODO: check
+	NOT-FOR-US: Dut Computer Control Engineering Co.'s PLC MAC1100
 CVE-2020-18753 (An issue in Dut Computer Control Engineering Co.'s PLC MAC1100 allows  ...)
-	TODO: check
+	NOT-FOR-US: Dut Computer Control Engineering Co.'s PLC MAC1100
 CVE-2020-18752
 	RESERVED
 CVE-2020-18751



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/69fcafdd7640cb3a9861119ed875a6a554d4e4c4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/69fcafdd7640cb3a9861119ed875a6a554d4e4c4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210813/c1385134/attachment.htm>

More information about the debian-security-tracker-commits mailing list