[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Oct 2 09:31:37 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
53e5af01 by Salvatore Bonaccorso at 2021-10-02T10:29:49+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6,7 +6,7 @@ CVE-2021-41864 (prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linu
 CVE-2021-41863
 	RESERVED
 CVE-2021-41862 (AviatorScript through 5.2.7 allows code execution via an expression th ...)
-	TODO: check
+	NOT-FOR-US: AviatorScript
 CVE-2021-41861
 	RESERVED
 CVE-2021-41860
@@ -42,7 +42,7 @@ CVE-2021-41849
 CVE-2021-41848
 	RESERVED
 CVE-2021-41847 (An issue was discovered in 3xLogic Infinias Access Control through 6.7 ...)
-	TODO: check
+	NOT-FOR-US: 3xLogic
 CVE-2021-41846
 	RESERVED
 CVE-2021-41845 (A SQL injection issue was discovered in ThycoticCentrify Secret Server ...)
@@ -8768,31 +8768,31 @@ CVE-2021-38112 (In the Amazon AWS WorkSpaces client 3.0.10 through 3.1.8 on Wind
 CVE-2021-38111 (The DEF CON 27 badge allows remote attackers to exploit a buffer overf ...)
 	NOT-FOR-US: DEF CON 27 badge
 CVE-2021-38110 (Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected b ...)
-	TODO: check
+	NOT-FOR-US: Corel WordPerfect
 CVE-2021-38109 (Corel DrawStandard 2020 22.0.0.474 is affected by an Out-of-bounds Rea ...)
-	TODO: check
+	NOT-FOR-US: Corel DrawStandard
 CVE-2021-38108 (Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected b ...)
-	TODO: check
+	NOT-FOR-US: Corel WordPerfect
 CVE-2021-38107 (CdrCore.dll in Corel DrawStandard 2020 22.0.0.474 is affected by an Ou ...)
-	TODO: check
+	NOT-FOR-US: Corel DrawStandard
 CVE-2021-38106 (UAX200.dll in Corel Presentations 2020 20.0.0.200 is affected by an Ou ...)
-	TODO: check
+	NOT-FOR-US: Corel Presentations
 CVE-2021-38105 (IPPP82.FLT in Corel Presentations 2020 20.0.0.200 is affected by an Ou ...)
-	TODO: check
+	NOT-FOR-US: Corel Presentations
 CVE-2021-38104 (IPPP72.FLT in Corel Presentations 2020 20.0.0.200 is affected by an Ou ...)
 	NOT-FOR-US: Corel Presentations
 CVE-2021-38103 (IBJPG2.FLT in Corel Presentations 2020 20.0.0.200 is affected by an Ou ...)
 	NOT-FOR-US: Corel Presentations
 CVE-2021-38102 (IPPP82.FLT in Corel Presentations 2020 20.0.0.200 is affected by an Ou ...)
-	TODO: check
+	NOT-FOR-US: Corel Presentations
 CVE-2021-38101 (CDRRip.dll in Corel PhotoPaint Standard 2020 22.0.0.474 is affected by ...)
-	TODO: check
+	NOT-FOR-US: Corel PhotoPaint Standard
 CVE-2021-38100 (Corel PhotoPaint Standard 2020 22.0.0.474 is affected by an Out-of-bou ...)
-	TODO: check
+	NOT-FOR-US: Corel PhotoPaint Standard
 CVE-2021-38099 (CDRRip.dll in Corel PhotoPaint Standard 2020 22.0.0.474 is affected by ...)
 	NOT-FOR-US: Corel PhotoPaint Standard
 CVE-2021-38098 (Corel PDF Fusion 2.6.2.0 is affected by a Heap Corruption vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Corel PDF Fusion
 CVE-2021-38097 (Corel PDF Fusion 2.6.2.0 is affected by an Out-of-bounds Write vulnera ...)
 	NOT-FOR-US: Corel PDF Fusion
 CVE-2021-38096 (Coreip.dll in Corel PDF Fusion 2.6.2.0 is affected by an Out-of-bounds ...)
@@ -12854,7 +12854,7 @@ CVE-2021-36311
 CVE-2021-36310
 	RESERVED
 CVE-2021-36309 (Dell Enterprise SONiC OS, versions 3.3.0 and earlier, contains a sensi ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2021-36308
 	RESERVED
 CVE-2021-36307
@@ -80316,7 +80316,7 @@ CVE-2020-21230
 CVE-2020-21229
 	RESERVED
 CVE-2020-21228 (JIZHICMS 1.5.1 contains a cross-site scripting (XSS) vulnerability in  ...)
-	TODO: check
+	NOT-FOR-US: JIZHICMS
 CVE-2020-21227
 	RESERVED
 CVE-2020-21226



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53e5af014f633da8c285285fb6b10a386d966339

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53e5af014f633da8c285285fb6b10a386d966339
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211002/cfce65bc/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list