[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Fri Mar 12 13:01:34 GMT 2021



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
978252f4 by Moritz Muehlenhoff at 2021-03-12T14:01:21+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -198,7 +198,7 @@ CVE-2021-28145
 CVE-2021-28144 (prog.cgi on D-Link DIR-3060 devices before 1.11b04 HF2 allows remote a ...)
 	NOT-FOR-US: D-Link
 CVE-2021-28143 (/jsonrpc on D-Link DIR-841 3.03 and 3.04 devices allows authenticated  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2021-28142
 	RESERVED
 CVE-2021-28141 (An issue was discovered in Progress Telerik UI for ASP.NET AJAX 2021.1 ...)
@@ -1346,9 +1346,9 @@ CVE-2021-27649
 CVE-2021-27648
 	RESERVED
 CVE-2021-27647 (Out-of-bounds Read vulnerability in iscsi_snapshot_comm_core in Synolo ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2021-27646 (Use After Free vulnerability in iscsi_snapshot_comm_core in Synology D ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2021-27645 (The nameserver caching daemon (nscd) in the GNU C Library (aka glibc o ...)
 	- glibc <unfixed> (bug #983479)
 	[buster] - glibc <no-dsa> (Minor issue)
@@ -2598,7 +2598,7 @@ CVE-2021-27082 (Quantum Development Kit for Visual Studio Code Remote Code Execu
 CVE-2021-27081 (Visual Studio Code ESLint Extension Remote Code Execution Vulnerabilit ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-27080 (Azure Sphere Unsigned Code Execution Vulnerability This CVE ID is uniq ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27079
 	RESERVED
 CVE-2021-27078 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
@@ -2608,9 +2608,9 @@ CVE-2021-27077 (Windows Win32k Elevation of Privilege Vulnerability This CVE ID
 CVE-2021-27076 (Microsoft SharePoint Server Remote Code Execution Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-27075 (Azure Virtual Machine Information Disclosure Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27074 (Azure Sphere Unsigned Code Execution Vulnerability This CVE ID is uniq ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27073
 	RESERVED
 CVE-2021-27072
@@ -2634,9 +2634,9 @@ CVE-2021-27064
 CVE-2021-27063 (Windows DNS Server Denial of Service Vulnerability This CVE ID is uniq ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-27062 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27061 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27060 (Visual Studio Code Remote Code Execution Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-27059 (Microsoft Office Remote Code Execution Vulnerability This CVE ID is un ...)
@@ -2656,15 +2656,15 @@ CVE-2021-27053 (Microsoft Excel Remote Code Execution Vulnerability This CVE ID
 CVE-2021-27052 (Microsoft SharePoint Server Information Disclosure Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-27051 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27050 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27049 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27048 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27047 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-27046
 	RESERVED
 CVE-2021-27045
@@ -3018,7 +3018,7 @@ CVE-2021-26904 (LMA ISIDA Retriever 5.2 allows SQL Injection. ...)
 CVE-2021-26903 (LMA ISIDA Retriever 5.2 is vulnerable to XSS via query['text']. ...)
 	NOT-FOR-US: LMA ISIDA Retriever
 CVE-2021-26902 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-26901 (Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-26900 (Windows Win32k Elevation of Privilege Vulnerability This CVE ID is uni ...)
@@ -3070,7 +3070,7 @@ CVE-2021-26878 (Windows Print Spooler Elevation of Privilege Vulnerability This
 CVE-2021-26877 (Windows DNS Server Remote Code Execution Vulnerability This CVE ID is  ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-26876 (OpenType Font Parsing Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-26875 (Windows Win32k Elevation of Privilege Vulnerability This CVE ID is uni ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-26874 (Windows Overlay Filter Elevation of Privilege Vulnerability ...)
@@ -3786,7 +3786,7 @@ CVE-2021-26571 (The Baseboard Management Controller (BMC) firmware in HPE Apollo
 CVE-2021-26570 (The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 Sy ...)
 	NOT-FOR-US: HPE
 CVE-2021-26569 (Race Condition within a Thread vulnerability in iscsi_snapshot_comm_co ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2021-26568
 	RESERVED
 CVE-2021-26567 (Use of unmaintained third party components vulnerability in faad in Sy ...)
@@ -9540,11 +9540,11 @@ CVE-2021-24112 (.NET Core Remote Code Execution Vulnerability This CVE ID is uni
 CVE-2021-24111 (.NET Framework Denial of Service Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-24110 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-24109 (Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerabilit ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-24108 (Microsoft Office Remote Code Execution Vulnerability This CVE ID is un ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-24107 (Windows Event Tracing Information Disclosure Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-24106 (Windows DirectX Information Disclosure Vulnerability ...)
@@ -9582,7 +9582,7 @@ CVE-2021-24091 (Windows Camera Codec Pack Remote Code Execution Vulnerability ..
 CVE-2021-24090 (Windows Error Reporting Elevation of Privilege Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-24089 (HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-24088 (Windows Local Spooler Remote Code Execution Vulnerability ...)
 	NOT-FOR-US: Microsoft
 CVE-2021-24087 (Azure IoT CLI extension Elevation of Privilege Vulnerability ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/978252f422005f266dad949515b85cde9c06436f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/978252f422005f266dad949515b85cde9c06436f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210312/6fc51b3d/attachment.htm>


More information about the debian-security-tracker-commits mailing list