[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Mar 3 08:22:31 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9c72ed6a by Salvatore Bonaccorso at 2021-03-03T09:22:08+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1811,7 +1811,7 @@ CVE-2021-27080
 CVE-2021-27079
 	RESERVED
 CVE-2021-27078 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27077
 	RESERVED
 CVE-2021-27076
@@ -1837,7 +1837,7 @@ CVE-2021-27067
 CVE-2021-27066
 	RESERVED
 CVE-2021-27065 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27064
 	RESERVED
 CVE-2021-27063
@@ -2306,15 +2306,15 @@ CVE-2021-26860
 CVE-2021-26859
 	RESERVED
 CVE-2021-26858 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-26857 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-26856
 	RESERVED
 CVE-2021-26855 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-26854 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-26853
 	RESERVED
 CVE-2021-26910 (Firejail before 0.9.64.4 allows attackers to bypass intended access re ...)
@@ -3396,7 +3396,7 @@ CVE-2021-26414
 CVE-2021-26413
 	RESERVED
 CVE-2021-26412 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-26411
 	RESERVED
 CVE-2021-26410
@@ -15851,7 +15851,7 @@ CVE-2021-21354
 CVE-2021-21353 (Pug is an npm package which is a high-performance template engine. In  ...)
 	TODO: check
 CVE-2021-21352 (Anuko Time Tracker is an open source, web-based time tracking applicat ...)
-	TODO: check
+	NOT-FOR-US: Anuko Time Tracker
 CVE-2021-21351
 	RESERVED
 CVE-2021-21350
@@ -20998,7 +20998,7 @@ CVE-2021-2140
 CVE-2021-2139
 	RESERVED
 CVE-2021-2138 (Vulnerability in the Oracle Cloud Infrastructure Data Science Notebook ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2021-2137
 	RESERVED
 CVE-2021-2136
@@ -34135,7 +34135,7 @@ CVE-2020-25904
 CVE-2020-25903
 	RESERVED
 CVE-2020-25902 (Blackboard Collaborate Ultra 20.02 is affected by a cross-site scripti ...)
-	TODO: check
+	NOT-FOR-US: Blackboard Collaborate Ultra
 CVE-2020-25901 (Host Header Injection in Spiceworks 7.5.7.0 allowing the attacker to r ...)
 	NOT-FOR-US: Spiceworks
 CVE-2020-25900
@@ -39573,7 +39573,7 @@ CVE-2020-23520 (imcat 5.2 allows an authenticated file upload and consequently r
 CVE-2020-23519
 	RESERVED
 CVE-2020-23518 (Cross Site Scripting (XSS) vulnerability in UltimateKode Neo Billing - ...)
-	TODO: check
+	NOT-FOR-US: UltimateKode Neo Billing - Accounting, Invoicing And CRM Software
 CVE-2020-23517
 	RESERVED
 CVE-2020-23516
@@ -64459,13 +64459,13 @@ CVE-2020-12532
 CVE-2020-12531
 	RESERVED
 CVE-2020-12530 (An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT ...)
-	TODO: check
+	NOT-FOR-US: MB connect software
 CVE-2020-12529 (An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT ...)
-	TODO: check
+	NOT-FOR-US: MB connect software
 CVE-2020-12528 (An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT ...)
-	TODO: check
+	NOT-FOR-US: MB connect software
 CVE-2020-12527 (An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT ...)
-	TODO: check
+	NOT-FOR-US: MB connect software
 CVE-2020-12526
 	RESERVED
 CVE-2020-12525 (M&M Software fdtCONTAINER Component in versions below 3.5.20304.x  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c72ed6ab8ad72ec9b122a3e79db04daecbf9d62

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c72ed6ab8ad72ec9b122a3e79db04daecbf9d62
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210303/b95cf969/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list