[Git][security-tracker-team/security-tracker][master] Process several NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Mar 22 20:24:10 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f3f79c2d by Salvatore Bonaccorso at 2021-03-22T21:23:14+01:00
Process several NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13,7 +13,7 @@ CVE-2021-28970
 CVE-2021-28969
 	RESERVED
 CVE-2021-28968 (An issue was discovered in PunBB before 1.4.6. An XSS vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: PunBB
 CVE-2021-28967
 	RESERVED
 CVE-2021-28966
@@ -3772,7 +3772,7 @@ CVE-2021-27310
 CVE-2021-27309
 	RESERVED
 CVE-2021-27308 (A cross-site scripting (XSS) vulnerability in the admin login panel in ...)
-	TODO: check
+	NOT-FOR-US: 4images
 CVE-2021-27307
 	RESERVED
 CVE-2021-27306 (An improper access control vulnerability in the JWT plugin in Kong Gat ...)
@@ -5466,7 +5466,7 @@ CVE-2021-26580
 CVE-2021-26579
 	RESERVED
 CVE-2021-26578 (A potential security vulnerability has been identified in HPE Network  ...)
-	TODO: check
+	NOT-FOR-US: HPE Network Orchestrator (NetO)
 CVE-2021-26577 (The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 Sy ...)
 	NOT-FOR-US: HPE
 CVE-2021-26576 (The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 Sy ...)
@@ -8855,7 +8855,7 @@ CVE-2021-25267
 CVE-2021-25266
 	RESERVED
 CVE-2021-25265 (A malicious website could execute code remotely in Sophos Connect Clie ...)
-	TODO: check
+	NOT-FOR-US: Sophos Connect Client
 CVE-2021-25264
 	RESERVED
 CVE-2021-25263
@@ -15156,9 +15156,9 @@ CVE-2021-22323
 CVE-2021-22322
 	RESERVED
 CVE-2021-22321 (There is a use-after-free vulnerability in a Huawei product. A module  ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2021-22320 (There is a denial of service vulnerability in Huawei products. A modul ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2021-22319
 	RESERVED
 CVE-2021-22318
@@ -15176,11 +15176,11 @@ CVE-2021-22313
 CVE-2021-22312
 	RESERVED
 CVE-2021-22311 (There is an improper permission assignment vulnerability in Huawei Man ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2021-22310 (There is an information leakage vulnerability in some huawei products. ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2021-22309 (There is insecure algorithm vulnerability in Huawei products. A module ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2021-22308
 	RESERVED
 CVE-2021-22307 (There is a weak algorithm vulnerability in Mate 3010.0.0.203(C00E201R7 ...)
@@ -77306,9 +77306,9 @@ CVE-2020-9215
 CVE-2020-9214
 	RESERVED
 CVE-2020-9213 (There is a denial of service vulnerability in some huawei products. In ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2020-9212 (There is a vulnerability in some version of USG9500 that the device im ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2020-9211
 	RESERVED
 CVE-2020-9210
@@ -77320,7 +77320,7 @@ CVE-2020-9208 (There is an information leak vulnerability in iManager NetEco 600
 CVE-2020-9207 (There is an improper authentication vulnerability in some verisons of  ...)
 	NOT-FOR-US: Huawei
 CVE-2020-9206 (The eUDC660 product has a resource management vulnerability. An attack ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2020-9205 (There has a CSV injection vulnerability in ManageOne 8.0.1. An attacke ...)
 	NOT-FOR-US: Huawei
 CVE-2020-9204



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3f79c2d9af67dafdb4d286121a0050ab1e6c4f8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3f79c2d9af67dafdb4d286121a0050ab1e6c4f8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210322/317b1159/attachment.htm>


More information about the debian-security-tracker-commits mailing list