[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Aug 24 09:18:58 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3cbb189c by Salvatore Bonaccorso at 2021-08-24T10:18:33+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -936,11 +936,11 @@ CVE-2021-3732 [overlayfs: Mounting overlayfs inside an unprivileged user namespa
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1995249
 	NOTE: https://git.kernel.org/linus/427215d85e8d1476da1a86b8d67aceb485eb3631
 CVE-2021-39615 (** UNSUPPORTED WHEN ASSIGNED ** D-Link DSR-500N version 1.02 contains  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2021-39614 (D-Link DVX-2000MS contains hard-coded credentials for undocumented use ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2021-39613 (** UNSUPPORTED WHEN ASSIGNED ** D-Link DVG-3104MS version 1.0.2.0.3, 1 ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2021-39612
 	RESERVED
 CVE-2021-39611
@@ -948,9 +948,9 @@ CVE-2021-39611
 CVE-2021-39610
 	RESERVED
 CVE-2021-39609 (Cross Site Scripting (XSS) vulnerability exiss in FlatCore-CMS 2.0.7 v ...)
-	TODO: check
+	NOT-FOR-US: FlatCore-CMS
 CVE-2021-39608 (Remote Code Execution (RCE) vulnerabilty exists in FlatCore-CMS 2.0.7  ...)
-	TODO: check
+	NOT-FOR-US: FlatCore-CMS
 CVE-2021-39607
 	RESERVED
 CVE-2021-39606
@@ -968,7 +968,7 @@ CVE-2021-39601
 CVE-2021-39600
 	RESERVED
 CVE-2021-39599 (Multiple Cross Site Scripting (XSS) vulnerabilities exists in CXUUCMS  ...)
-	TODO: check
+	NOT-FOR-US: CXUUCMS
 CVE-2021-39598
 	RESERVED
 CVE-2021-39597
@@ -9117,7 +9117,7 @@ CVE-2021-36015 (Adobe Media Encoder version 15.2 (and earlier) is affected by a
 CVE-2021-36014 (Adobe Media Encoder version 15.2 (and earlier) is affected by an unini ...)
 	NOT-FOR-US: Adobe
 CVE-2021-36013 (Adobe Media Encoder version 15.2 (and earlier) is affected by an Out-o ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-36012
 	RESERVED
 CVE-2021-36011 (Adobe Illustrator version 25.2.3 (and earlier) is affected by a potent ...)
@@ -27309,7 +27309,7 @@ CVE-2021-28598
 CVE-2021-28597 (Adobe Photoshop Elements version 5.2 (and earlier) is affected by an i ...)
 	NOT-FOR-US: Adobe
 CVE-2021-28596 (Adobe Framemaker version 2020.0.1 (and earlier) and 2019.0.8 (and earl ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28595 (Adobe Dimension version 3.4 (and earlier) is affected by an Uncontroll ...)
 	NOT-FOR-US: Adobe
 CVE-2021-28594
@@ -41911,7 +41911,7 @@ CVE-2021-22451
 CVE-2021-22450
 	RESERVED
 CVE-2021-22449 (There is a logic vulnerability in Elf-G10HN 1.0.0.608. An unauthentica ...)
-	TODO: check
+	NOT-FOR-US: Elf-G10HN (Huawei)
 CVE-2021-22448
 	RESERVED
 CVE-2021-22447 (There is an Improper Check for Unusual or Exceptional Conditions Vulne ...)
@@ -42095,7 +42095,7 @@ CVE-2021-22359 (There is a denial of service vulnerability in the verisions V200
 CVE-2021-22358 (There is an insufficient input validation vulnerability in FusionCompu ...)
 	NOT-FOR-US: Huawei
 CVE-2021-22357 (There is a denial of service vulnerability in Huawei products. A modul ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2021-22356
 	RESERVED
 CVE-2021-22355
@@ -42153,7 +42153,7 @@ CVE-2021-22330 (There is an out of bounds write vulnerability in Huawei Smartpho
 CVE-2021-22329 (There has a license management vulnerability in some Huawei products.  ...)
 	NOT-FOR-US: Huawei
 CVE-2021-22328 (There is a denial of service vulnerability in some huawei products. In ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2021-22327 (There is an arbitrary memory write vulnerability in Huawei smart phone ...)
 	NOT-FOR-US: Huawei
 CVE-2021-22326 (There is an Incorrect Privilege Assignment Vulnerability in Huawei Sma ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3cbb189c3c08a06e17d710d8448fff66246ebba6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3cbb189c3c08a06e17d710d8448fff66246ebba6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210824/b40329b7/attachment.htm>

More information about the debian-security-tracker-commits mailing list