[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Dec 3 20:17:42 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d9d1cfaa by Salvatore Bonaccorso at 2021-12-03T21:16:51+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1376,13 +1376,13 @@ CVE-2021-44024
 CVE-2021-44023
 	RESERVED
 CVE-2021-44022 (A reachable assertion vulnerability in Trend Micro Apex One could allo ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2021-44021 (An unnecessary privilege vulnerability in Trend Micro Worry-Free Busin ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2021-44020 (An unnecessary privilege vulnerability in Trend Micro Worry-Free Busin ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2021-44019 (An unnecessary privilege vulnerability in Trend Micro Worry-Free Busin ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2021-3978
 	RESERVED
 CVE-2021-3977
@@ -2136,7 +2136,7 @@ CVE-2021-43774
 CVE-2021-43773
 	RESERVED
 CVE-2021-43772 (Trend Micro Security 2021 v17.0 (Consumer) contains a vulnerability th ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2021-43771 (Trend Micro Antivirus for Mac 2021 v11 (Consumer) is vulnerable to an  ...)
 	NOT-FOR-US: Trend Micro
 CVE-2021-3964 (elgg is vulnerable to Authorization Bypass Through User-Controlled Key ...)
@@ -16824,7 +16824,7 @@ CVE-2021-38911 (IBM Security Risk Manager on CP4S 1.7.0.0 stores user credential
 CVE-2021-38910
 	RESERVED
 CVE-2021-38909 (IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scr ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-38908
 	RESERVED
 CVE-2021-38907
@@ -39333,7 +39333,7 @@ CVE-2021-29869
 CVE-2021-29868 (IBM i2 iBase 8.9.13 and 9.0.0 could allow a local attacker to obtain s ...)
 	NOT-FOR-US: IBM
 CVE-2021-29867 (IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29866
 	RESERVED
 CVE-2021-29865
@@ -39555,7 +39555,7 @@ CVE-2021-29758 (IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1
 CVE-2021-29757 (IBM QRadar User Behavior Analytics 4.1.1 is vulnerable to cross-site r ...)
 	NOT-FOR-US: IBM
 CVE-2021-29756 (IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site req ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29755
 	RESERVED
 CVE-2021-29754 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable  ...)
@@ -39629,13 +39629,13 @@ CVE-2021-29721
 CVE-2021-29720
 	RESERVED
 CVE-2021-29719 (IBM Cognos Analytics 11.1.7 and 11.2.0 could be vulnerable to client s ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29718
 	RESERVED
 CVE-2021-29717
 	RESERVED
 CVE-2021-29716 (IBM Cognos Analytics 11.1.7 and 11.2.0 could allow a low level user to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29715 (IBM API Connect 5.0.0.0 through 5.0.8.11 could alllow a remote user to ...)
 	NOT-FOR-US: IBM
 CVE-2021-29714 (IBM Content Navigator 3.0.CD could allow a malicious user to cause a d ...)
@@ -63480,7 +63480,7 @@ CVE-2021-20495
 CVE-2021-20494 (IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a ...)
 	NOT-FOR-US: IBM
 CVE-2021-20493 (IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scr ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20492 (IBM WebSphere Application Server 8.0, 8.5, 9.0, and Liberty Java Batch ...)
 	NOT-FOR-US: IBM
 CVE-2021-20491 (IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based bu ...)
@@ -63526,7 +63526,7 @@ CVE-2021-20472
 CVE-2021-20471
 	RESERVED
 CVE-2021-20470 (IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users sho ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20469
 	RESERVED
 CVE-2021-20468



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d9d1cfaa3a9ac4927f929321dbf4a96a733cdfbd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d9d1cfaa3a9ac4927f929321dbf4a96a733cdfbd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211203/9695972f/attachment.htm>


More information about the debian-security-tracker-commits mailing list