[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Mar 5 08:24:01 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d0322edf by Salvatore Bonaccorso at 2021-03-05T09:23:12+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2021-27965 (The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2 ...)
-	TODO: check
+	NOT-FOR-US: MSI Dragon Center
 CVE-2021-27964 (SonLogger before 6.4.1 is affected by Unauthenticated Arbitrary File U ...)
-	TODO: check
+	NOT-FOR-US: SonLogger
 CVE-2021-27963 (SonLogger before 6.4.1 is affected by user creation with any user perm ...)
-	TODO: check
+	NOT-FOR-US: SonLogger
 CVE-2021-27962
 	RESERVED
 CVE-2021-27961
@@ -19,7 +19,7 @@ CVE-2021-27957
 CVE-2021-27956
 	RESERVED
 CVE-2020-36255 (An issue was discovered in IdentityModel (aka ScottBrady.IdentityModel ...)
-	TODO: check
+	NOT-FOR-US: ScottBrady.IdentityModel
 CVE-2019-25025 (The activerecord-session_store (aka Active Record Session Store) compo ...)
 	TODO: check
 CVE-2021-27955
@@ -1412,7 +1412,7 @@ CVE-2021-27316
 CVE-2021-27315
 	RESERVED
 CVE-2021-27314 (SQL injection in admin.php in doctor appointment system 1.0 allows an  ...)
-	TODO: check
+	NOT-FOR-US: doctor appointment system
 CVE-2021-27313
 	RESERVED
 CVE-2021-27312
@@ -2111,9 +2111,9 @@ CVE-2021-26991
 CVE-2021-26990
 	RESERVED
 CVE-2021-26989 (Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P9 a ...)
-	TODO: check
+	NOT-FOR-US: Clustered Data ONTAP
 CVE-2021-26988 (Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 a ...)
-	TODO: check
+	NOT-FOR-US: Clustered Data ONTAP
 CVE-2021-26987
 	RESERVED
 CVE-2021-26986
@@ -6162,9 +6162,9 @@ CVE-2021-25350
 CVE-2021-25349
 	RESERVED
 CVE-2021-25348 (Improper permission grant check in Samsung Internet prior to version 1 ...)
-	TODO: check
+	NOT-FOR-US: Samsung Internet
 CVE-2021-25347 (Hijacking vulnerability in Samsung Email application version prior to  ...)
-	TODO: check
+	NOT-FOR-US: Samsung Email application
 CVE-2021-25346 (A possible arbitrary memory overwrite vulnerabilities in quram library ...)
 	TODO: check
 CVE-2021-25345 (Graphic format mismatch while converting video format in hwcomposer pr ...)
@@ -6192,11 +6192,11 @@ CVE-2021-25335 (Improper lockscreen status check in cocktailbar service in Samsu
 CVE-2021-25334 (Improper input check in wallpaper service in Samsung mobile devices pr ...)
 	NOT-FOR-US: Samsung mobile devices
 CVE-2021-25333 (Improper access control in Samsung Pay mini application prior to v4.0. ...)
-	TODO: check
+	NOT-FOR-US: Samsung Pay mini application
 CVE-2021-25332 (Improper access control in Samsung Pay mini application prior to v4.0. ...)
-	TODO: check
+	NOT-FOR-US: Samsung Pay mini application
 CVE-2021-25331 (Improper access control in Samsung Pay mini application prior to v4.0. ...)
-	TODO: check
+	NOT-FOR-US: Samsung Pay mini application
 CVE-2021-25330 (Calling of non-existent provider in MobileWips application prior to SM ...)
 	NOT-FOR-US: MobileWips application
 CVE-2020-36198



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0322edf5a36e019ac23e81b351f5e4f2732cf10

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0322edf5a36e019ac23e81b351f5e4f2732cf10
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210305/23e9d766/attachment.htm>


More information about the debian-security-tracker-commits mailing list