[Git][security-tracker-team/security-tracker][master] Process some NFUs

Mon Aug 16 13:36:11 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1dffe6eb by Salvatore Bonaccorso at 2021-08-16T14:35:32+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -289,15 +289,15 @@ CVE-2021-38715
 CVE-2021-38714
 	RESERVED
 CVE-2021-38713 (imgURL 2.31 allows XSS via an X-Forwarded-For HTTP header. ...)
-	TODO: check
+	NOT-FOR-US: imgURL
 CVE-2021-38712 (OneNav 0.9.12 allows Information Disclosure of the onenav.db3 contents ...)
-	TODO: check
+	NOT-FOR-US: OneNav
 CVE-2021-38710
 	RESERVED
 CVE-2021-38709 (In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaS ...)
-	TODO: check
+	NOT-FOR-US: ocProducts Composr CMS
 CVE-2021-38708 (In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaS ...)
-	TODO: check
+	NOT-FOR-US: ocProducts Composr CMS
 CVE-2021-3710
 	RESERVED
 CVE-2021-3709
@@ -318,9 +318,9 @@ CVE-2021-38704
 CVE-2021-38703
 	RESERVED
 CVE-2021-3708 (D-Link router DSL-2750U with firmware vME1.16 or prior versions is vul ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2021-3707 (D-Link router DSL-2750U with firmware vME1.16 or prior versions is vul ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2021-38702
 	RESERVED
 CVE-2021-38701
@@ -30739,7 +30739,7 @@ CVE-2021-26088 (An improper authentication vulnerability in FSSO Collector versi
 CVE-2021-26087
 	RESERVED
 CVE-2021-26086 (Affected versions of Atlassian Jira Server and Data Center allow remot ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2021-26085 (Affected versions of Atlassian Confluence Server allow remote attacker ...)
 	NOT-FOR-US: Atlassian Confluence
 CVE-2021-26084
@@ -68348,7 +68348,7 @@ CVE-2020-23174
 CVE-2020-23173
 	RESERVED
 CVE-2020-23172 (A vulnerability in all versions of Kuba allows attackers to overwrite  ...)
-	TODO: check
+	NOT-FOR-US: Kuba
 CVE-2020-23171 (A vulnerability in all versions of Nim-lang allows unauthenticated att ...)
 	TODO: check
 CVE-2020-23170



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dffe6eb1886e9ca4023b17941fb43a4f23b5b49

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dffe6eb1886e9ca4023b17941fb43a4f23b5b49
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210816/f2e02ebb/attachment.htm>
