[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Wed May 5 21:19:42 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ac865820 by Salvatore Bonaccorso at 2021-05-05T22:19:18+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1347,9 +1347,9 @@ CVE-2021-31520
 CVE-2021-31519
 	RESERVED
 CVE-2021-31518 (Trend Micro Home Network Security 6.5.599 and earlier is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2021-31517 (Trend Micro Home Network Security 6.5.599 and earlier is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2021-3508 (A flaw was found in PDFResurrect in version 0.22b. There is an infinit ...)
 	- pdfresurrect <unfixed> (unimportant)
 	NOTE: https://github.com/enferex/pdfresurrect/issues/17
@@ -28398,7 +28398,7 @@ CVE-2021-20403 (IBM Security Verify Information Queue 1.0.6 and 1.0.7 is vulnera
 CVE-2021-20402 (IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a re ...)
 	NOT-FOR-US: IBM
 CVE-2021-20401 (IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20400
 	RESERVED
 CVE-2021-20399
@@ -28406,7 +28406,7 @@ CVE-2021-20399
 CVE-2021-20398
 	RESERVED
 CVE-2021-20397 (IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. Thi ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20396
 	RESERVED
 CVE-2021-20395
@@ -96392,7 +96392,7 @@ CVE-2020-5015 (IBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic
 CVE-2020-5014 (IBM DataPower Gateway V10 and V2018 could allow a local attacker with  ...)
 	NOT-FOR-US: IBM
 CVE-2020-5013 (IBM QRadar SIEM 7.3 and 7.4 may vulnerable to a XML External Entity In ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-5012
 	RESERVED
 CVE-2020-5011
@@ -96432,7 +96432,7 @@ CVE-2020-4995 (IBM Security Identity Governance and Intelligence 5.2.6 does not
 CVE-2020-4994
 	RESERVED
 CVE-2020-4993 (IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4992
 	RESERVED
 CVE-2020-4991
@@ -96460,7 +96460,7 @@ CVE-2020-4981 (IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local pr
 CVE-2020-4980
 	RESERVED
 CVE-2020-4979 (IBM QRadar SIEM 7.3 and 7.4 is vulnerable to insecure inter-deployment ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4978
 	RESERVED
 CVE-2020-4977
@@ -96554,13 +96554,13 @@ CVE-2020-4934 (IBM Content Navigator 3.0.CD could allow a remote attacker to tra
 CVE-2020-4933 (IBM Jazz Reporting Service 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerabl ...)
 	NOT-FOR-US: IBM
 CVE-2020-4932 (IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4931 (IBM MQ 9.1 LTS, 9.2 LTS, and 9.1 CD AMQP Channels could allow an authe ...)
 	NOT-FOR-US: IBM
 CVE-2020-4930
 	RESERVED
 CVE-2020-4929 (IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. Thi ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4928 (IBM Cloud Pak System 2.3 could allow a local privileged attacker to up ...)
 	NOT-FOR-US: IBM
 CVE-2020-4927
@@ -96652,7 +96652,7 @@ CVE-2020-4885
 CVE-2020-4884 (IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 stores user c ...)
 	NOT-FOR-US: IBM
 CVE-2020-4883 (IBM QRadar SIEM 7.3 and 7.4 could disclose sensitive information about ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4882 (IBM Planning Analytics 2.0 could be vulnerable to a Server-Side Reques ...)
 	NOT-FOR-US: IBM
 CVE-2020-4881 (IBM Planning Analytics 2.0 could allow a remote attacker to obtain sen ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac8658206d23719ad760b306aa96c45dba178455

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac8658206d23719ad760b306aa96c45dba178455
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210505/3528a0b2/attachment.htm>

More information about the debian-security-tracker-commits mailing list