[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Tue Mar 9 11:54:44 GMT 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c1b2177 by Moritz Muehlenhoff at 2021-03-09T12:52:08+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1899,7 +1899,7 @@ CVE-2021-27221
 CVE-2021-27220
 	RESERVED
 CVE-2021-27217 (An issue was discovered in the _send_secure_msg() function of Yubico y ...)
-	TODO: check
+	NOT-FOR-US: YubiHSM 2 SDK
 CVE-2021-27216
 	RESERVED
 CVE-2021-27215 (An issue was discovered in genua genugate before 9.0 Z p19, 9.1.x thro ...)
@@ -4125,9 +4125,9 @@ CVE-2021-3328
 CVE-2021-3327
 	RESERVED
 CVE-2021-26294 (An issue was discovered in AfterLogic Aurora through 7.7.9 and WebMail ...)
-	TODO: check
+	NOT-FOR-US: AfterLogic Aurora
 CVE-2021-26293 (An issue was discovered in AfterLogic Aurora through 8.5.3 and WebMail ...)
-	TODO: check
+	NOT-FOR-US: AfterLogic Aurora
 CVE-2021-26292
 	RESERVED
 CVE-2021-26291
@@ -6474,17 +6474,17 @@ CVE-2021-25348 (Improper permission grant check in Samsung Internet prior to ver
 CVE-2021-25347 (Hijacking vulnerability in Samsung Email application version prior to  ...)
 	NOT-FOR-US: Samsung Email application
 CVE-2021-25346 (A possible arbitrary memory overwrite vulnerabilities in quram library ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25345 (Graphic format mismatch while converting video format in hwcomposer pr ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25344 (Missing permission check in knox_custom service prior to SMR Mar-2021  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25343 (Calling of non-existent provider in Samsung Members prior to version 2 ...)
 	NOT-FOR-US: Samsung
 CVE-2021-25342 (Calling of non-existent provider in SMP sdk prior to version 3.0.9 all ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25341 (Calling of non-existent provider in S Assistant prior to version 6.5.0 ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25340 (Improper access control vulnerability in Samsung keyboard version prio ...)
 	NOT-FOR-US: Samsung
 CVE-2021-25339 (Improper address validation in HArx in Samsung mobile devices prior to ...)
@@ -9303,7 +9303,7 @@ CVE-2021-24035
 CVE-2021-24034
 	RESERVED
 CVE-2021-24033 (react-dev-utils prior to v11.0.4 exposes a function, getProcessForPort ...)
-	TODO: check
+	NOT-FOR-US: react-dev-utils
 CVE-2021-24030
 	RESERVED
 CVE-2021-24029



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c1b2177265b87431c84eb10ecf5010fba451b71

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c1b2177265b87431c84eb10ecf5010fba451b71
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210309/68341c4a/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list