[Git][security-tracker-team/security-tracker][master] Process some new NFUs

Salvatore Bonaccorso carnil at debian.org
Sun Jan 3 08:25:07 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
54d238dd by Salvatore Bonaccorso at 2021-01-03T09:24:15+01:00
Process some new NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2021-3006 (The breed function in the smart contract implementation for Farm in Se ...)
-	TODO: check
+	NOT-FOR-US: Farm in Seal Finance (Seal) Ethereum token
 CVE-2021-3005 (MK-AUTH through 19.01 K4.9 allows remote attackers to obtain sensitive ...)
-	TODO: check
+	NOT-FOR-US: MK-AUTH
 CVE-2021-3004 (The _deposit function in the smart contract implementation for Stable  ...)
-	TODO: check
+	NOT-FOR-US: Stable Yield Credit (yCREDIT) Ethereum token
 CVE-2020-35962 (The sellTokenForLRC function in the vault protocol in the smart contra ...)
-	TODO: check
+	NOT-FOR-US: Loopring (LRC) Ethereum token
 CVE-2020-35961
 	RESERVED
 CVE-2020-35960
@@ -25,7 +25,7 @@ CVE-2020-35954
 CVE-2020-35953
 	RESERVED
 CVE-2020-35952 (login.php in PHPFusion (aka PHP-Fusion) Andromeda 9.x before 2020-12-3 ...)
-	TODO: check
+	NOT-FOR-US: PHP-Fusion
 CVE-2021-3003
 	RESERVED
 CVE-2021-3002 (Seo Panel 4.8.0 allows reflected XSS via the seo/seopanel/login.php?se ...)
@@ -8623,7 +8623,7 @@ CVE-2020-28843
 CVE-2020-28842
 	RESERVED
 CVE-2020-28841 (MyDrivers64.sys in DriverGenius 9.61.3708.3054 allows attackers to cau ...)
-	TODO: check
+	NOT-FOR-US: DriverGenius
 CVE-2020-28840
 	RESERVED
 CVE-2020-28839
@@ -94796,11 +94796,11 @@ CVE-2019-15082 (The 360-product-rotation plugin before 1.4.8 for WordPress has r
 CVE-2019-15081 (OpenCart 3.x, when the attacker has login access to the admin panel, a ...)
 	NOT-FOR-US: OpenCart
 CVE-2019-15080 (An issue was discovered in a smart contract implementation for MORPH T ...)
-	TODO: check
+	NOT-FOR-US: MORPH Token Ethereum token
 CVE-2019-15079 (A typo exists in the constructor of a smart contract implementation fo ...)
-	TODO: check
+	NOT-FOR-US: EAI Ethereum token
 CVE-2019-15078 (An issue was discovered in a smart contract implementation for AIRDROP ...)
-	TODO: check
+	NOT-FOR-US: AIRDROPX BORN Ethereum token
 CVE-2019-15077
 	RESERVED
 CVE-2019-15076



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54d238dd842a0b1d0a18142fde72ef504e285baf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54d238dd842a0b1d0a18142fde72ef504e285baf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210103/d1838916/attachment.html>


More information about the debian-security-tracker-commits mailing list