[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu May 27 08:43:45 BST 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8dedb6ee by Moritz Muehlenhoff at 2021-05-27T09:42:38+02:00
NFUs
mark radsecproxy as unimportant, just affecting an example script

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2026,8 +2026,9 @@ CVE-2021-32643
 	RESERVED
 CVE-2021-32642 [add result validation to dyndisc example scripts]
 	RESERVED
-	- radsecproxy <unfixed>
+	- radsecproxy <unfixed> (unimportant)
 	NOTE: https://github.com/radsecproxy/radsecproxy/commit/ab7a2ea42a75d5ad3421e4365f63cbdcb08fb7af
+	NOTE: Only affects example script
 CVE-2021-32641
 	RESERVED
 CVE-2021-32640 (ws is an open source WebSocket client and server library for Node.js.  ...)
@@ -2038,7 +2039,7 @@ CVE-2021-32640 (ws is an open source WebSocket client and server library for Nod
 CVE-2021-32639
 	RESERVED
 CVE-2021-32638 (Github's CodeQL action is provided to run CodeQL-based code scanning o ...)
-	TODO: check
+	NOT-FOR-US: Github
 CVE-2021-32637
 	RESERVED
 CVE-2021-32636
@@ -2059,7 +2060,7 @@ CVE-2021-32631
 CVE-2021-32630 (Admidio is a free, open source user management system for websites of  ...)
 	NOT-FOR-US: Admidio
 CVE-2021-32629 (Cranelift is an open-source code generator maintained by Bytecode Alli ...)
-	TODO: check
+	NOT-FOR-US: Cranelift
 CVE-2021-32628
 	RESERVED
 CVE-2021-32627
@@ -10141,7 +10142,7 @@ CVE-2021-29302 (TP-Link TL-WR802N(US), Archer_C50v5_US v4_200 <= 2020.06 cont
 CVE-2021-29301
 	RESERVED
 CVE-2021-29300 (The @ronomon/opened library before 1.5.2 is vulnerable to a command in ...)
-	TODO: check
+	NOT-FOR-US: @ronomon/opened
 CVE-2021-29299
 	RESERVED
 CVE-2021-29298



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8dedb6eee39cab27f3d4e0ec548bbf7c5965ae98

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8dedb6eee39cab27f3d4e0ec548bbf7c5965ae98
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210527/353077bf/attachment.htm>

More information about the debian-security-tracker-commits mailing list