[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jul 15 21:17:52 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
389ac4d7 by Salvatore Bonaccorso at 2021-07-15T22:17:30+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -16505,7 +16505,7 @@ CVE-2021-29751 (IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Bu
 CVE-2021-29750
 	RESERVED
 CVE-2021-29749 (IBM Secure External Authentication Server 6.0.2 and IBM Secure Proxy 6 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29748
 	RESERVED
 CVE-2021-29747 (IBM InfoSphere Information Server 11.7 could allow a remote attacker t ...)
@@ -16519,7 +16519,7 @@ CVE-2021-29744
 CVE-2021-29743
 	RESERVED
 CVE-2021-29742 (IBM Security Verify Access Docker 10.0.0 could allow a user to imperso ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29741
 	RESERVED
 CVE-2021-29740 (IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 sys ...)
@@ -16553,7 +16553,7 @@ CVE-2021-29727
 CVE-2021-29726
 	RESERVED
 CVE-2021-29725 (IBM Secure External Authentication Server 2.4.3.2, 6.0.1, 6.0.2 and IB ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29724
 	RESERVED
 CVE-2021-29723
@@ -16605,7 +16605,7 @@ CVE-2021-29701
 CVE-2021-29700
 	RESERVED
 CVE-2021-29699 (IBM Security Verify Access Docker 10.0.0 could allow a remote priviled ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29698
 	RESERVED
 CVE-2021-29697
@@ -39754,15 +39754,15 @@ CVE-2021-20539
 CVE-2021-20538 (IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 could allow a us ...)
 	NOT-FOR-US: IBM
 CVE-2021-20537 (IBM Security Verify Access Docker 10.0.0 contains hard-coded credentia ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20536 (IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores  ...)
 	NOT-FOR-US: IBM
 CVE-2021-20535 (IBM Jazz Reporting Service 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerabl ...)
 	NOT-FOR-US: IBM
 CVE-2021-20534 (IBM Security Verify Access Docker 10.0.0 could allow a remote attacker ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20533 (IBM Security Verify Access Docker 10.0.0 could allow a remote authenti ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20532 (IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 could allow a loc ...)
 	NOT-FOR-US: IBM
 CVE-2021-20531
@@ -39780,9 +39780,9 @@ CVE-2021-20526
 CVE-2021-20525
 	RESERVED
 CVE-2021-20524 (IBM Security Verify Access Docker 10.0.0 is vulnerable to cross-site s ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20523 (IBM Security Verify Access Docker 10.0.0 could allow a remote attacker ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20522
 	RESERVED
 CVE-2021-20521
@@ -39806,9 +39806,9 @@ CVE-2021-20513
 CVE-2021-20512
 	RESERVED
 CVE-2021-20511 (IBM Security Verify Access Docker 10.0.0 could allow a remote attacker ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20510 (IBM Security Verify Access Docker 10.0.0 stores user credentials in pl ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20509
 	RESERVED
 CVE-2021-20508
@@ -39828,15 +39828,15 @@ CVE-2021-20502 (IBM Jazz Foundation Products are vulnerable to an XML External E
 CVE-2021-20501 (IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network attacker to send em ...)
 	NOT-FOR-US: IBM
 CVE-2021-20500 (IBM Security Verify Access Docker 10.0.0 could reveal highly sensitive ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20499 (IBM Security Verify Access Docker 10.0.0 could allow a remote attacker ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20498 (IBM Security Verify Access Docker 10.0.0 reveals version information i ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20497 (IBM Security Verify Access Docker 10.0.0 uses weaker than expected cry ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20496 (IBM Security Verify Access Docker 10.0.0 could allow an authenticated  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20495
 	RESERVED
 CVE-2021-20494 (IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a ...)
@@ -39950,7 +39950,7 @@ CVE-2021-20441 (IBM Security Verify Bridge uses weaker than expected cryptograph
 CVE-2021-20440 (IBM API Connect 10.0.0.0, and 2018.4.1.0 through 2018.4.1.13 does not  ...)
 	NOT-FOR-US: IBM
 CVE-2021-20439 (IBM Security Access Manager 9.0 and IBM Security Verify Access Docker  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20438
 	RESERVED
 CVE-2021-20437



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/389ac4d7af94f2485bec8c4992976ac647a99aec

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/389ac4d7af94f2485bec8c4992976ac647a99aec
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210715/7fd2865b/attachment.htm>

More information about the debian-security-tracker-commits mailing list