[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7aed844c by Salvatore Bonaccorso at 2021-10-07T22:18:13+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -29917,7 +29917,7 @@ CVE-2021-29702 (Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11
 CVE-2021-29701
 	RESERVED
 CVE-2021-29700 (IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 c ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29699 (IBM Security Verify Access Docker 10.0.0 could allow a remote priviled ...)
 	NOT-FOR-US: IBM
 CVE-2021-29698
@@ -53357,7 +53357,7 @@ CVE-2021-20586 (Resource management errors vulnerability in a robot controller o
 CVE-2021-20585 (IBM Security Verify Access 20.07 could disclose sensitive information  ...)
 	NOT-FOR-US: IBM
 CVE-2021-20584 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20583 (IBM Security Verify (IBM Security Verify Privilege Vault 10.9.66) coul ...)
 	NOT-FOR-US: IBM
 CVE-2021-20582 (IBM Security Secret Server up to 11.0 stores sensitive information in  ...)
@@ -53383,7 +53383,7 @@ CVE-2021-20573 (IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerabl
 CVE-2021-20572 (IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a ...)
 	NOT-FOR-US: IBM
 CVE-2021-20571 (IBM Sterling B2B Integrator 5.2.0.0 through 6.1.1.0 is vulnerable to s ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20570
 	RESERVED
 CVE-2021-20569 (IBM Security Secret Server up to 11.0 could allow an attacker to enume ...)
@@ -53403,7 +53403,7 @@ CVE-2021-20563 (IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a
 CVE-2021-20562 (IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_3 ...)
 	NOT-FOR-US: IBM
 CVE-2021-20561 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 is vulnerable to cro ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20560 (IBM Sterling Connect:Direct Browser User Interface 1.4.1.1 and 1.5.0.2 ...)
 	NOT-FOR-US: IBM
 CVE-2021-20559 (IBM Control Desk 7.6.1.2 and 7.6.1.3 is vulnerable to cross-site scrip ...)
@@ -53421,7 +53421,7 @@ CVE-2021-20554 (IBM Sterling Order Management 9.4, 9.5, and 10.0 is vulnerable t
 CVE-2021-20553
 	RESERVED
 CVE-2021-20552 (IBM Sterling File Gateway 6.0.0.0 through 6.1.1.0 could allow a remote ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20551
 	RESERVED
 CVE-2021-20550 (IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting. Th ...)
@@ -53547,7 +53547,7 @@ CVE-2021-20491 (IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-ba
 CVE-2021-20490 (IBM Spectrum Protect Plus 10.1.0 through 10.1.8 could allow a local us ...)
 	NOT-FOR-US: IBM
 CVE-2021-20489 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 is vulnerable to cro ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20488 (IBM Security Identity Manager 6.0.2 could allow an authenticated malic ...)
 	NOT-FOR-US: IBM
 CVE-2021-20487 (IBM Power9 Self Boot Engine(SBE) could allow a privileged user to inje ...)
@@ -53563,7 +53563,7 @@ CVE-2021-20483 (IBM Security Identity Manager 6.0.2 is vulnerable to server-side
 CVE-2021-20482 (IBM Cloud Pak for Automation 20.0.2 and 20.0.3 IF002 are vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2021-20481 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 is vulnerable to cro ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20480 (IBM WebSphere Application Server 7.0, 8.0, and 8.5 is vulnerable to se ...)
 	NOT-FOR-US: IBM
 CVE-2021-20479
@@ -53579,7 +53579,7 @@ CVE-2021-20475
 CVE-2021-20474 (IBM Guardium Data Encryption (GDE) 3.0.0.2 and 4.0.0.4 does not perfor ...)
 	NOT-FOR-US: IBM
 CVE-2021-20473 (IBM Sterling File Gateway User Interface 2.2.0.0 through 6.1.1.0 does  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20472
 	RESERVED
 CVE-2021-20471
@@ -53773,15 +53773,15 @@ CVE-2021-20378 (IBM Guardium Data Encryption (GDE) 3.0.0.2 and 4.0.0.4 does not
 CVE-2021-20377 (IBM Security Guardium 11.3 could allow a remote attacker to obtain sen ...)
 	NOT-FOR-US: IBM
 CVE-2021-20376 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow an authe ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20375 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow an authe ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20374 (IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to stored cr ...)
 	NOT-FOR-US: IBM
 CVE-2021-20373
 	RESERVED
 CVE-2021-20372 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20371 (IBM Jazz Foundation and IBM Engineering products could allow a remote  ...)
 	NOT-FOR-US: IBM
 CVE-2021-20370



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7aed844cda4bfa06bdfd18ee2a52cba4f9e685d4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7aed844cda4bfa06bdfd18ee2a52cba4f9e685d4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211007/d42178f8/attachment.htm>