[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
630bf7e4 by Salvatore Bonaccorso at 2021-11-05T09:36:19+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2735,7 +2735,7 @@ CVE-2021-42626
 CVE-2021-42625
 	RESERVED
 CVE-2021-42624 (A local buffer overflow vulnerability exists in the latest version of  ...)
-	TODO: check
+	NOT-FOR-US: Miniftpd
 CVE-2021-42623
 	RESERVED
 CVE-2021-42622
@@ -5234,7 +5234,7 @@ CVE-2021-42059
 CVE-2021-42058
 	RESERVED
 CVE-2021-42057 (Obsidian Dataview through 0.4.12-hotfix1 allows eval injection. The ev ...)
-	TODO: check
+	NOT-FOR-US: Obsidian Dataview
 CVE-2021-42056
 	RESERVED
 CVE-2021-42055 (ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insec ...)
@@ -45978,25 +45978,25 @@ CVE-2021-25511
 CVE-2021-25510
 	RESERVED
 CVE-2021-25509 (A missing input validation in Samsung Flow Windows application prior t ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25508 (Improper privilege management vulnerability in API Key used in SmartTh ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25507 (Improper authorization vulnerability in Samsung Flow mobile applicatio ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25506 (Non-existent provider in Samsung Health prior to 6.19.1.0001 allows at ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25505 (Improper authentication in Samsung Pass prior to 3.0.02.4 allows to us ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25504 (Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 a ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25503 (Improper input validation vulnerability in HDCP prior to SMR Nov-2021  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25502 (A vulnerability of storing sensitive information insecurely in Propert ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25501 (An improper access control vulnerability in SCloudBnRReceiver in SecTe ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25500 (A missing input validation in HDCP LDFW prior to SMR Nov-2021 Release  ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-25499 (Intent redirection vulnerability in SamsungAccountSDKSigninActivity of ...)
 	NOT-FOR-US: Samsung
 CVE-2021-25498 (A possible buffer overflow vulnerability in maetd_eco_cb_mode of libSP ...)
@@ -86802,7 +86802,7 @@ CVE-2020-21141
 CVE-2020-21140
 	RESERVED
 CVE-2020-21139 (EC Cloud E-Commerce System v1.3 was discovered to contain a Cross-Site ...)
-	TODO: check
+	NOT-FOR-US: EC Cloud E-Commerce System
 CVE-2020-21138
 	RESERVED
 CVE-2020-21137



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/630bf7e4abde11f5ebcff0dd10a7252ae1dab0ad

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/630bf7e4abde11f5ebcff0dd10a7252ae1dab0ad
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211105/e3fb6617/attachment.htm>