[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Nov 10 20:38:45 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
92a571b9 by Salvatore Bonaccorso at 2021-11-10T21:38:14+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25,13 +25,13 @@ CVE-2021-43566
 CVE-2021-43565
 	RESERVED
 CVE-2021-43564 (An issue was discovered in the jobfair (aka Job Fair) extension before ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension
 CVE-2021-43563 (An issue was discovered in the pixxio (aka pixx.io integration or DAM) ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension
 CVE-2021-43562 (An issue was discovered in the pixxio (aka pixx.io integration or DAM) ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension
 CVE-2021-43561 (An XSS issue was discovered in the google_for_jobs (aka Google for Job ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension
 CVE-2021-43560
 	RESERVED
 CVE-2021-43559
@@ -1964,7 +1964,7 @@ CVE-2021-43138
 CVE-2021-43137
 	RESERVED
 CVE-2021-43136 (An authentication bypass issue in FormaLMS <= 2.4.4 allows an attac ...)
-	TODO: check
+	NOT-FOR-US: FormaLMS
 CVE-2021-43135
 	RESERVED
 CVE-2021-43134
@@ -5485,7 +5485,7 @@ CVE-2021-42113
 CVE-2021-42112 (The "File upload question" functionality in LimeSurvey 3.x-LTS through ...)
 	- limesurvey <itp> (bug #472802)
 CVE-2021-42111 (An issue was discovered in the RCDevs OpenOTP app 1.4.13 and 1.4.14 fo ...)
-	TODO: check
+	NOT-FOR-US: RCDevs OpenOTP app
 CVE-2021-42110
 	RESERVED
 CVE-2021-3874 (bookstack is vulnerable to Improper Limitation of a Pathname to a Rest ...)
@@ -7139,9 +7139,9 @@ CVE-2021-41429
 CVE-2021-41428
 	REJECTED
 CVE-2021-41427 (Beeline Smart Box 2.0.38 is vulnerable to Cross Site Scripting (XSS) v ...)
-	TODO: check
+	NOT-FOR-US: Beeline Smart Box
 CVE-2021-41426 (Beeline Smart box 2.0.38 is vulnerable to Cross Site Request Forgery ( ...)
-	TODO: check
+	NOT-FOR-US: Beeline Smart Box
 CVE-2021-41425
 	RESERVED
 CVE-2021-41424



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92a571b904d382cfea8aa75b384396e770e4e22c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92a571b904d382cfea8aa75b384396e770e4e22c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211110/b6785dd8/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list