[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Dec 1 20:26:37 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e488b7e3 by Salvatore Bonaccorso at 2021-12-01T21:25:41+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -39208,7 +39208,7 @@ CVE-2021-29865
 CVE-2021-29864
 	RESERVED
 CVE-2021-29863 (IBM QRadar SIEM 7.3 and 7.4 is vulnerable to server side request forge ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29862 (IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user ...)
 	NOT-FOR-US: IBM
 CVE-2021-29861 (IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user ...)
@@ -39236,7 +39236,7 @@ CVE-2021-29851 (IBM Planning Analytics 2.0 could allow a remote attacker to obta
 CVE-2021-29850
 	RESERVED
 CVE-2021-29849 (IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. Thi ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29848
 	RESERVED
 CVE-2021-29847
@@ -39376,7 +39376,7 @@ CVE-2021-29781 (IBM Partner Engagement Manager 2.0 could allow a remote attacker
 CVE-2021-29780 (IBM Resilient OnPrem v41.1 of IBM Security SOAR could allow an authent ...)
 	NOT-FOR-US: IBM
 CVE-2021-29779 (IBM QRadar SIEM 7.3 and 7.4 could allow an attacker to obtain sensitiv ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29778
 	RESERVED
 CVE-2021-29777 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, ...)
@@ -63504,7 +63504,7 @@ CVE-2021-20402 (IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allo
 CVE-2021-20401 (IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a ...)
 	NOT-FOR-US: IBM
 CVE-2021-20400 (IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected cryptographic al ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20399 (IBM Qradar SIEM 7.3.0 to 7.3.3 Patch 8 and 7.4.0 to 7.4.3 GA is vulner ...)
 	NOT-FOR-US: IBM
 CVE-2021-20398



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e488b7e37dc82a0bebb6dbae395fef0a287a9683

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e488b7e37dc82a0bebb6dbae395fef0a287a9683
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211201/4ffce9cb/attachment.htm>

More information about the debian-security-tracker-commits mailing list