[Git][security-tracker-team/security-tracker][master] Process one NFU

Fri Mar 12 20:25:06 GMT 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
529d8dec by Salvatore Bonaccorso at 2021-03-12T21:24:43+01:00
Process one NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14884,7 +14884,7 @@ CVE-2021-21728
 CVE-2021-21727
 	RESERVED
 CVE-2021-21726 (Some ZTE products have an input verification vulnerability in the diag ...)
-	TODO: check
+	NOT-FOR-US: ZTE
 CVE-2021-21725 (A ZTE product has an information leak vulnerability. An attacker with  ...)
 	NOT-FOR-US: ZTE
 CVE-2021-21724 (A ZTE product has a memory leak vulnerability. Due to the product's im ...)
@@ -16838,7 +16838,7 @@ CVE-2021-21382
 CVE-2021-21380
 	RESERVED
 CVE-2021-21379 (XWiki Platform is a generic wiki platform offering runtime services fo ...)
-	TODO: check
+	NOT-FOR-US: XWiki
 CVE-2021-21378 (Envoy is a cloud-native high-performance edge/middle/service proxy. In ...)
 	NOT-FOR-US: envoy proxy (not the same as itp'ed envoy, #758651)
 CVE-2021-21377
@@ -16865,7 +16865,7 @@ CVE-2021-21369 (Hyperledger Besu is an open-source, MainNet compatible, Ethereum
 CVE-2021-21368 (msgpack5 is a msgpack v5 implementation for node.js and the browser. I ...)
 	TODO: check
 CVE-2021-21367 (Switchboard Bluetooth Plug for elementary OS from version 2.3.0 and be ...)
-	TODO: check
+	NOT-FOR-US: Switchboard Bluetooth Plug for elementary OS
 CVE-2021-21366 (xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core)  ...)
 	TODO: check
 CVE-2021-21365
@@ -17770,43 +17770,43 @@ CVE-2021-21087
 CVE-2021-21086
 	RESERVED
 CVE-2021-21085 (Adobe Connect version 11.0.7 (and earlier) is affected by an Input Val ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21084
 	RESERVED
 CVE-2021-21083
 	RESERVED
 CVE-2021-21082 (Adobe Photoshop versions 21.2.5 (and earlier) and 22.2 (and earlier) a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21081
 	RESERVED
 CVE-2021-21080 (Adobe Connect version 11.0.7 (and earlier) is affected by a reflected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21079 (Adobe Connect version 11.0.7 (and earlier) is affected by a reflected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21078 (Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21077 (Adobe Animate version 21.0.3 (and earlier) is affected by a Heap-based ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21076 (Adobe Animate version 21.0.3 (and earlier) is affected by an Out-of-bo ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21075 (Adobe Animate version 21.0.3 (and earlier) is affected by an Out-of-bo ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21074 (Adobe Animate version 21.0.3 (and earlier) is affected by an Out-of-bo ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21073 (Adobe Animate version 21.0.3 (and earlier) is affected by an Out-of-bo ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21072 (Adobe Animate version 21.0.3 (and earlier) is affected by an Out-of-bo ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21071 (Adobe Animate version 21.0.3 (and earlier) is affected by a Memory Cor ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21070
 	RESERVED
 CVE-2021-21069 (Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21068 (Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21067 (Adobe Photoshop versions 21.2.5 (and earlier) and 22.2 (and earlier) a ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21066 (Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bound ...)
 	NOT-FOR-US: Adobe
 CVE-2021-21065 (Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bound ...)
@@ -17828,7 +17828,7 @@ CVE-2021-21058 (Acrobat Reader DC versions versions 2020.013.20074 (and earlier)
 CVE-2021-21057 (Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020 ...)
 	NOT-FOR-US: Adobe
 CVE-2021-21056 (Adobe Framemaker version 2020.0.1 (and earlier) is affected by an Out- ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-21055 (Adobe Dreamweaver versions 21.0 (and earlier) and 20.2 (and earlier) i ...)
 	NOT-FOR-US: Adobe
 CVE-2021-21054 (Adobe Illustrator version 25.1 (and earlier) is affected by an Out-of- ...)
@@ -58850,11 +58850,11 @@ CVE-2020-14991
 CVE-2020-14990 (IOBit Advanced SystemCare Free 13.5.0.263 allows local users to gain p ...)
 	NOT-FOR-US: IOBit Advanced SystemCare Free
 CVE-2020-14989 (An issue was discovered in Bloomreach Experience Manager (brXM) 4.1.0  ...)
-	TODO: check
+	NOT-FOR-US: Bloomreach Experience Manager (brXM)
 CVE-2020-14988 (An issue was discovered in Bloomreach Experience Manager (brXM) 4.1.0  ...)
-	TODO: check
+	NOT-FOR-US: Bloomreach Experience Manager (brXM)
 CVE-2020-14987 (An issue was discovered in Bloomreach Experience Manager (brXM) 4.1.0  ...)
-	TODO: check
+	NOT-FOR-US: Bloomreach Experience Manager (brXM)
 CVE-2020-14986
 	RESERVED
 CVE-2020-14985
@@ -87076,7 +87076,7 @@ CVE-2020-4833
 CVE-2020-4832 (IBM PowerHA 7.2 could allow a local attacker to obtain sensitive infor ...)
 	NOT-FOR-US: IBM
 CVE-2020-4831 (IBM DataPower Gateway 10.0.0.0 through 10.0.1.0 uses weaker than expec ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4830
 	RESERVED
 CVE-2020-4829 (IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a v ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/529d8decf7abfc366af8f0988fe77705e9c09963

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/529d8decf7abfc366af8f0988fe77705e9c09963
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210312/432e2bd4/attachment.htm>
