[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Aug 21 09:16:23 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e4b6951d by Salvatore Bonaccorso at 2021-08-21T10:15:53+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -40762,7 +40762,7 @@ CVE-2021-22257
 CVE-2021-22256
 	RESERVED
 CVE-2021-22255 (SSRF in URL file upload in Baserow <1.1.0 allows remote authenticat ...)
-	TODO: check
+	NOT-FOR-US: Baserow
 CVE-2021-22254 (Under very specific conditions a user could be impersonated using Gitl ...)
 	TODO: check
 CVE-2021-22253
@@ -41841,17 +41841,17 @@ CVE-2021-21830 (A heap-based buffer overflow vulnerability exists in the XML Dec
 CVE-2021-21829 (A heap-based buffer overflow vulnerability exists in the XML Decompres ...)
 	NOT-FOR-US: Xmill (AT&T Labs)
 CVE-2021-21828 (A heap-based buffer overflow vulnerability exists in the XML Decompres ...)
-	TODO: check
+	NOT-FOR-US: AT&T Labs Xmill
 CVE-2021-21827 (A heap-based buffer overflow vulnerability exists in the XML Decompres ...)
-	TODO: check
+	NOT-FOR-US: AT&T Labs Xmill
 CVE-2021-21826 (A heap-based buffer overflow vulnerability exists in the XML Decompres ...)
-	TODO: check
+	NOT-FOR-US: AT&T Labs Xmill
 CVE-2021-21825 (A heap-based buffer overflow vulnerability exists in the XML Decompres ...)
 	NOT-FOR-US: AT&T Labs Xmill
 CVE-2021-21824 (An out-of-bounds write vulnerability exists in the JPG Handle_JPEG420  ...)
 	NOT-FOR-US: Accusoft ImageGear
 CVE-2021-21823 (An information disclosure vulnerability exists in the Friend finder fu ...)
-	TODO: check
+	NOT-FOR-US: GmbH Komoot
 CVE-2021-21822 (A use-after-free vulnerability exists in the JavaScript engine of Foxi ...)
 	NOT-FOR-US: Foxit
 CVE-2021-21821 (A stack-based buffer overflow vulnerability exists in the PDF process_ ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4b6951d2cb849f9191f3847fae552480aaabd87

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4b6951d2cb849f9191f3847fae552480aaabd87
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210821/6ab2a6de/attachment.htm>

More information about the debian-security-tracker-commits mailing list