[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jun 18 12:38:06 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2da005ff by Salvatore Bonaccorso at 2021-06-18T13:37:36+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -485,15 +485,15 @@ CVE-2021-34813 (Matrix libolm before 3.2.3 allows a malicious Matrix homeserver
 	NOTE: https://gitlab.matrix.org/matrix-org/olm/-/releases/3.2.3
 	NOTE: https://matrix.org/blog/2021/06/14/adventures-in-fuzzing-libolm
 CVE-2021-34812 (Use of hard-coded credentials vulnerability in php component in Synolo ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2021-34811 (Server-Side Request Forgery (SSRF) vulnerability in task management co ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2021-34810 (Improper privilege management vulnerability in cgi component in Synolo ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2021-34809 (Improper neutralization of special elements used in a command ('Comman ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2021-34808 (Server-Side Request Forgery (SSRF) vulnerability in cgi component in S ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2021-34807
 	RESERVED
 CVE-2021-34806
@@ -1072,7 +1072,7 @@ CVE-2021-34555 (OpenDMARC 1.4.1 and 1.4.1.1 allows remote attackers to cause a d
 CVE-2021-34554
 	RESERVED
 CVE-2021-34553 (Sonatype Nexus Repository Manager 3.x before 3.31.0 allows a remote au ...)
-	TODO: check
+	NOT-FOR-US: Sonatype Nexus Repository Manager
 CVE-2021-34552
 	RESERVED
 CVE-2021-34551 (PHPMailer before 6.5.0 on Windows allows remote code execution if lang ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2da005ff48c65b47e5bdd35d8bcce0d5cf47520a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2da005ff48c65b47e5bdd35d8bcce0d5cf47520a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210618/84d4585d/attachment.htm>

More information about the debian-security-tracker-commits mailing list