[Git][security-tracker-team/security-tracker][master] 2 commits: Track full commit id for CVE-2021-3658
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jul 28 09:37:07 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
58b5aabc by Salvatore Bonaccorso at 2021-07-28T10:34:14+02:00
Track full commit id for CVE-2021-3658
- - - - -
196b6bac by Salvatore Bonaccorso at 2021-07-28T10:36:15+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9,7 +9,7 @@ CVE-2021-37595 (In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_conte
CVE-2021-37594 (In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_re ...)
TODO: check
CVE-2021-37593 (PEEL Shopping before 9.4.0.1 allows remote SQL injection. A public use ...)
- TODO: check
+ NOT-FOR-US: PEEL Shopping
CVE-2021-37592
RESERVED
CVE-2021-37591
@@ -798,7 +798,7 @@ CVE-2021-3658
- bluez <unfixed>
[bullseye] - bluez <no-dsa> (Minor issue)
[buster] - bluez <no-dsa> (Minor issue)
- NOTE: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=b497b5942a8
+ NOTE: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=b497b5942a8beb8f89ca1c359c54ad67ec843055
CVE-2021-37216
RESERVED
CVE-2021-37215
@@ -2165,7 +2165,7 @@ CVE-2021-36607
CVE-2021-36606
RESERVED
CVE-2021-36605 (engineercms 1.03 is vulnerable to Cross Site Scripting (XSS). There is ...)
- TODO: check
+ NOT-FOR-US: engineercms
CVE-2021-36604
RESERVED
CVE-2021-36603
@@ -3575,7 +3575,7 @@ CVE-2021-36006
CVE-2021-36005
RESERVED
CVE-2021-36004 (Adobe InDesign version 16.0 (and earlier) is affected by an Out-of-bou ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2021-36003
RESERVED
CVE-2021-36002
@@ -4703,9 +4703,9 @@ CVE-2021-35481
CVE-2021-35480
RESERVED
CVE-2021-35479 (Nagios Log Server before 2.1.9 contains Stored XSS in the custom colum ...)
- TODO: check
+ NOT-FOR-US: Nagios Log Server
CVE-2021-35478 (Nagios Log Server before 2.1.9 contains Reflected XSS in the dropdown ...)
- TODO: check
+ NOT-FOR-US: Nagios Log Server
CVE-2021-35477
RESERVED
CVE-2021-35476
@@ -10876,7 +10876,7 @@ CVE-2021-32790 (Woocommerce is an open source eCommerce plugin for WordPress. An
CVE-2021-32789 (woocommerce-gutenberg-products-block is a feature plugin for WooCommer ...)
NOT-FOR-US: woocommerce-gutenberg-products-block
CVE-2021-32788 (Discourse is an open source discussion platform. In versions prior to ...)
- TODO: check
+ NOT-FOR-US: Discourse
CVE-2021-32787
RESERVED
CVE-2021-32786 (mod_auth_openidc is an authentication/authorization module for the Apa ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cdaa23f83f9f90560b2b55dc7026bcbfc1eaf162...196b6bac28b5e0dd0b0c6e7f99ed23653fd9d0b5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cdaa23f83f9f90560b2b55dc7026bcbfc1eaf162...196b6bac28b5e0dd0b0c6e7f99ed23653fd9d0b5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210728/79004fea/attachment.htm>
More information about the debian-security-tracker-commits
mailing list