[Git][security-tracker-team/security-tracker][master] Process several NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue May 11 21:13:17 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0da56fc3 by Salvatore Bonaccorso at 2021-05-11T22:12:52+02:00
Process several NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2495,7 +2495,7 @@ CVE-2021-3509
 CVE-2021-31521
 	RESERVED
 CVE-2021-31520 (A weak session token authentication bypass vulnerability in Trend Micr ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2021-31519
 	RESERVED
 CVE-2021-31518 (Trend Micro Home Network Security 6.5.599 and earlier is vulnerable to ...)
@@ -11615,23 +11615,23 @@ CVE-2021-27621
 CVE-2021-27620
 	RESERVED
 CVE-2021-27619 (SAP Commerce (Backoffice Search), versions - 1808, 1811, 1905, 2005, 2 ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-27618 (The Integration Builder Framework of SAP Process Integration versions  ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-27617 (The Integration Builder Framework of SAP Process Integration versions  ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-27616 (Under certain conditions, SAP Business One Hana Chef Cookbook, version ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-27615
 	RESERVED
 CVE-2021-27614 (SAP Business One Hana Chef Cookbook, versions - 8.82, 9.0, 9.1, 9.2, 9 ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-27613 (Under certain conditions, SAP Business One Chef cookbook, version - 9. ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-27612 (In specific situations SAP GUI for Windows, versions - 7.60, 7.70 forw ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-27611 (SAP NetWeaver AS ABAP, versions - 700, 701, 702, 730, 731, allow a hig ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2021-27610
 	RESERVED
 CVE-2021-27609 (SAP Focused RUN versions 200, 300, does not perform necessary authoriz ...)
@@ -22333,23 +22333,23 @@ CVE-2021-23018
 CVE-2021-23017
 	RESERVED
 CVE-2021-23016 (On BIG-IP APM versions 15.1.x before 15.1.3, 14.1.x before 14.1.4.1, 1 ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23015 (On BIG-IP 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.0.8 throu ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23014 (On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, and 14.1.x b ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23013 (On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1. ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23012 (On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1. ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23011 (On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x befor ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23010 (On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x befor ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23009 (On BIG-IP version 16.0.x before 16.0.1.1 and 15.1.x before 15.1.3, mal ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23008 (On version 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 1 ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23007 (On BIG-IP versions 14.1.4 and 16.0.1.1, when the Traffic Management Mi ...)
 	NOT-FOR-US: F5 BIG-IP
 CVE-2021-23006 (On all 7.x and 6.x versions (fixed in 8.0.0), undisclosed BIG-IQ pages ...)
@@ -29334,7 +29334,7 @@ CVE-2021-20579
 CVE-2021-20578
 	RESERVED
 CVE-2021-20577 (IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20576
 	RESERVED
 CVE-2021-20575
@@ -29370,7 +29370,7 @@ CVE-2021-20561
 CVE-2021-20560
 	RESERVED
 CVE-2021-20559 (IBM Control Desk 7.6.1.2 and 7.6.1.3 is vulnerable to cross-site scrip ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20558
 	RESERVED
 CVE-2021-20557
@@ -29412,7 +29412,7 @@ CVE-2021-20540
 CVE-2021-20539
 	RESERVED
 CVE-2021-20538 (IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 could allow a us ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20537
 	RESERVED
 CVE-2021-20536 (IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores  ...)
@@ -98656,9 +98656,9 @@ CVE-2020-4538
 CVE-2020-4537
 	RESERVED
 CVE-2020-4536 (IBM OpenPages GRC Platform 8.1 could allow a remote attacker to obtain ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4535 (IBM OpenPages GRC Platform 8.1 is vulnerable to cross-site scripting.  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4534 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a  ...)
 	NOT-FOR-US: IBM
 CVE-2020-4533 (IBM Jazz Reporting Service 6.0.6, 6.0.6.1, and 7.0 is vulnerable to cr ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0da56fc3a6d692cbf668fb9fae060a09b560b4c2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0da56fc3a6d692cbf668fb9fae060a09b560b4c2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210511/6bef5cda/attachment.htm>

More information about the debian-security-tracker-commits mailing list