[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Nov 19 08:48:38 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d6ff85fa by Salvatore Bonaccorso at 2021-11-19T09:48:14+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2021-44034
 	RESERVED
 CVE-2021-44033 (In Ionic Identity Vault before 5.0.5, the protection mechanism for inv ...)
-	TODO: check
+	NOT-FOR-US: Ionic Identity Vault
 CVE-2021-44032
 	RESERVED
 CVE-2021-44031
@@ -9674,7 +9674,7 @@ CVE-2021-41280
 CVE-2021-41279
 	RESERVED
 CVE-2021-41278 (Functions SDK for EdgeX is meant to provide all the plumbing necessary ...)
-	TODO: check
+	NOT-FOR-US: EdgeX
 CVE-2021-41277 (Metabase is an open source data analytics platform. In affected versio ...)
 	NOT-FOR-US: Metabase
 CVE-2021-41276
@@ -12455,11 +12455,11 @@ CVE-2021-40133
 CVE-2021-40132
 	RESERVED
 CVE-2021-40131 (A vulnerability in the web-based management interface of Cisco Common  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2021-40130 (A vulnerability in the web application of Cisco Common Services Platfo ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2021-40129 (A vulnerability in the configuration dashboard of Cisco Common Service ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2021-40128 (A vulnerability in the account activation feature of Cisco Webex Meeti ...)
 	NOT-FOR-US: Cisco
 CVE-2021-40127 (A vulnerability in the web-based management interface of Cisco Small B ...)
@@ -71486,21 +71486,21 @@ CVE-2021-0673
 CVE-2021-0672 (In Browser app, there is a possible information disclosure due to a mi ...)
 	NOT-FOR-US: MediaTek components for Android
 CVE-2021-0671 (In apusys, there is a possible memory corruption due to a missing boun ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0670 (In apusys, there is a possible memory corruption due to a use after fr ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0669 (In apusys, there is a possible memory corruption due to a use after fr ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0668 (In apusys, there is a possible memory corruption due to incorrect erro ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0667 (In apusys, there is a possible memory corruption due to a use after fr ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0666 (In apusys, there is a possible out of bounds read due to an incorrect  ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0665 (In apusys, there is a possible out of bounds read due to an incorrect  ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0664 (In ccu, there is a possible memory corruption due to a use after free. ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0663 (In audio DSP, there is a possible out of bounds write due to an incorr ...)
 	NOT-FOR-US: Mediatek
 CVE-2021-0662 (In audio DSP, there is a possible out of bounds write due to an incorr ...)
@@ -71510,15 +71510,15 @@ CVE-2021-0661 (In audio DSP, there is a possible out of bounds write due to an i
 CVE-2021-0660 (In ccu, there is a possible out of bounds read due to incorrect error  ...)
 	NOT-FOR-US: Mediatek
 CVE-2021-0659 (In apusys, there is a possible out of bounds read due to an incorrect  ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0658 (In apusys, there is a possible out of bounds write due to a missing bo ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0657 (In apusys, there is a possible out of bounds write due to a stack-base ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0656 (In edma driver, there is a possible memory corruption due to a use aft ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0655 (In mdlactl driver, there is a possible memory corruption due to an inc ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0654 (In isRealSnapshot of TaskThumbnailView.java, there is possible data ex ...)
 	NOT-FOR-US: Android
 CVE-2021-0653
@@ -71573,7 +71573,7 @@ CVE-2021-0631 (In wifi driver, there is a possible system crash due to a missing
 CVE-2021-0630 (In wifi driver, there is a possible system crash due to a missing boun ...)
 	NOT-FOR-US: Mediatek
 CVE-2021-0629 (In mdlactl driver, there is a possible memory corruption due to a use  ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0628 (In OMA DRM, there is a possible memory corruption due to improper inpu ...)
 	NOT-FOR-US: Mediatek
 CVE-2021-0627 (In OMA DRM, there is a possible memory corruption due to an integer ov ...)
@@ -71583,17 +71583,17 @@ CVE-2021-0626 (In ged, there is a possible out of bounds write due to a missing
 CVE-2021-0625 (In ccu, there is a possible memory corruption due to improper locking. ...)
 	NOT-FOR-US: Mediatek
 CVE-2021-0624 (In flv extractor, there is a possible out of bounds read due to a heap ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0623 (In asf extractor, there is a possible out of bounds read due to an int ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0622 (In asf extractor, there is a possible out of bounds read due to a heap ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0621 (In asf extractor, there is a possible out of bounds read due to an int ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0620 (In asf extractor, there is a possible out of bounds read due to a heap ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0619 (In ape extractor, there is a possible out of bounds read due to a miss ...)
-	TODO: check
+	NOT-FOR-US: Mediatek
 CVE-2021-0618 (In ape extractor, there is a possible out of bounds read due to a heap ...)
 	NOT-FOR-US: Mediatek
 CVE-2021-0617 (In ape extractor, there is a possible out of bounds read due to a heap ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6ff85fa5a0bf62f831eac23be1feea88f5a3336

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6ff85fa5a0bf62f831eac23be1feea88f5a3336
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211119/cc5dbec2/attachment.htm>

More information about the debian-security-tracker-commits mailing list