[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Sep 1 21:17:58 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b52b652b by Salvatore Bonaccorso at 2021-09-01T22:17:33+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2021-40382 (An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_713052 ...)
-	TODO: check
+	NOT-FOR-US: Compro devices
 CVE-2021-40381 (An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_713052 ...)
-	TODO: check
+	NOT-FOR-US: Compro devices
 CVE-2021-40380 (An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_713052 ...)
-	TODO: check
+	NOT-FOR-US: Compro devices
 CVE-2021-40379 (An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_713052 ...)
-	TODO: check
+	NOT-FOR-US: Compro devices
 CVE-2021-40378 (An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_713052 ...)
-	TODO: check
+	NOT-FOR-US: Compro devices
 CVE-2021-40377
 	RESERVED
 CVE-2021-40376
@@ -63,11 +63,11 @@ CVE-2021-3760
 CVE-2021-40353 (A SQL injection vulnerability exists in version 8.0 of openSIS when My ...)
 	TODO: check
 CVE-2021-40352 (OpenEMR 6.0.0 has a pnotes_print.php?noteid= Insecure Direct Object Re ...)
-	TODO: check
+	NOT-FOR-US: OpenEMR
 CVE-2021-40351
 	RESERVED
 CVE-2021-40350 (webctrl.cgi.elf on Christie Digital DWU850-GS V06.46 devices allows at ...)
-	TODO: check
+	NOT-FOR-US: Christie Digital DWU850-GS V06.46 devices
 CVE-2021-40349
 	RESERVED
 CVE-2021-40348
@@ -1241,9 +1241,9 @@ CVE-2021-39819
 CVE-2021-39818
 	RESERVED
 CVE-2021-39817 (Adobe Bridge version 11.1 (and earlier) is affected by a memory corrup ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-39816 (Adobe Bridge version 11.1 (and earlier) is affected by a memory corrup ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-39815
 	RESERVED
 CVE-2021-39814
@@ -2136,7 +2136,7 @@ CVE-2021-39375 (Philips Healthcare Tasy Electronic Medical Record (EMR) 3.06 all
 CVE-2021-39374
 	RESERVED
 CVE-2021-39373 (Samsung Drive Manager 2.0.104 on Samsung H3 devices allows attackers t ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2021-39372
 	RESERVED
 CVE-2021-39371 (An XML external entity (XXE) injection in PyWPS before 4.5.0 allows an ...)
@@ -2273,7 +2273,7 @@ CVE-2021-39322
 CVE-2021-39321
 	RESERVED
 CVE-2021-39320 (The underConstruction plugin <= 1.18 for WordPress echoes out the r ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-39319
 	RESERVED
 CVE-2021-39318
@@ -2684,7 +2684,7 @@ CVE-2021-39172 (Cachet is an open source status page system. Prior to version 2.
 CVE-2021-39171 (Passport-SAML is a SAML 2.0 authentication provider for Passport, the  ...)
 	TODO: check
 CVE-2021-39170 (Pimcore is an open source data & experience management platform. P ...)
-	TODO: check
+	NOT-FOR-US: Pimcore
 CVE-2021-39169 (Misskey is a decentralized microblogging platform. In versions of Miss ...)
 	NOT-FOR-US: Misskey
 CVE-2021-39168 (OpenZepplin is a library for smart contract development. In affected v ...)
@@ -2692,7 +2692,7 @@ CVE-2021-39168 (OpenZepplin is a library for smart contract development. In affe
 CVE-2021-39167 (OpenZepplin is a library for smart contract development. In affected v ...)
 	NOT-FOR-US: OpenZeppelin
 CVE-2021-39166 (Pimcore is an open source data & experience management platform. P ...)
-	TODO: check
+	NOT-FOR-US: Pimcore
 CVE-2021-39165 (Cachet is an open source status page. With Cachet prior to and includi ...)
 	- cachet <itp> (bug #851177)
 CVE-2021-39164 (Matrix is an ecosystem for open federated Instant Messaging and Voice  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b52b652b71af8f4bb42bd1d7d58db7e7dc2b9a3b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b52b652b71af8f4bb42bd1d7d58db7e7dc2b9a3b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210901/83f4ae40/attachment.htm>

More information about the debian-security-tracker-commits mailing list