[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Sep 2 21:37:41 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3c0ccdaf by Salvatore Bonaccorso at 2021-09-02T22:37:13+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -231,7 +231,7 @@ CVE-2021-3759 [ unaccounted ipc objects in Linux kernel lead to breaking memcg l
 	- linux <unfixed>
 	NOTE: https://lore.kernel.org/linux-mm/1626333284-1404-1-git-send-email-nglaive@gmail.com/
 CVE-2021-3758 (bookstack is vulnerable to Server-Side Request Forgery (SSRF) ...)
-	TODO: check
+	NOT-FOR-US: bookstack
 CVE-2021-3757 (immer is vulnerable to Improperly Controlled Modification of Object Pr ...)
 	TODO: check
 CVE-2021-40331
@@ -2416,7 +2416,7 @@ CVE-2021-39324
 CVE-2021-39323
 	RESERVED
 CVE-2021-39322 (The Easy Social Icons plugin <= 3.0.8 for WordPress echoes out the  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-39321
 	RESERVED
 CVE-2021-39320 (The underConstruction plugin <= 1.18 for WordPress echoes out the r ...)
@@ -10061,11 +10061,11 @@ CVE-2021-36021
 CVE-2021-36020 (Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier)  ...)
 	NOT-FOR-US: Magento
 CVE-2021-36019 (Adobe After Effects version 18.2.1 (and earlier) is affected by an Out ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-36018 (Adobe After Effects version 18.2.1 (and earlier) is affected by an Out ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-36017 (Adobe After Effects version 18.2.1 (and earlier) is affected by a memo ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-36016 (Adobe Media Encoder version 15.2 (and earlier) is affected by an Out-o ...)
 	NOT-FOR-US: Adobe
 CVE-2021-36015 (Adobe Media Encoder version 15.2 (and earlier) is affected by a memory ...)
@@ -10107,13 +10107,13 @@ CVE-2021-35998
 CVE-2021-35997 (Adobe Premiere Pro version 15.2 (and earlier) is affected by a memory  ...)
 	NOT-FOR-US: Adobe
 CVE-2021-35996 (Adobe After Effects version 18.2.1 (and earlier) is affected by a memo ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-35995 (Adobe After Effects version 18.2.1 (and earlier) is affected by an Imp ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-35994 (Adobe After Effects version 18.2.1 (and earlier) is affected by an out ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-35993 (Adobe After Effects version 18.2.1 (and earlier) is affected by an out ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-35992 (Adobe Bridge version 11.0.2 (and earlier) is affected by an Out-of-bou ...)
 	NOT-FOR-US: Adobe
 CVE-2021-35991 (Adobe Bridge version 11.0.2 (and earlier) is affected by an uninitiali ...)
@@ -28403,37 +28403,37 @@ CVE-2021-28567
 CVE-2021-28566
 	RESERVED
 CVE-2021-28565 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28564 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28563 (Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6 ...)
 	NOT-FOR-US: Magento
 CVE-2021-28562 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
 	NOT-FOR-US: Adobe
 CVE-2021-28561 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28560 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28559 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28558 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28557 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28556 (Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6 ...)
 	NOT-FOR-US: Magento
 CVE-2021-28555 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28554 (Acrobat Reader DC versions versions 2021.001.20155 (and earlier), 2020 ...)
 	NOT-FOR-US: Adobe
 CVE-2021-28553 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28552 (Acrobat Reader DC versions versions 2021.001.20155 (and earlier), 2020 ...)
 	NOT-FOR-US: Adobe
 CVE-2021-28551 (Acrobat Reader DC versions versions 2021.001.20155 (and earlier), 2020 ...)
 	NOT-FOR-US: Adobe
 CVE-2021-28550 (Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2021-28549 (Adobe Photoshop versions 21.2.6 (and earlier) and 22.3 (and earlier) a ...)
 	NOT-FOR-US: Adobe
 CVE-2021-28548 (Adobe Photoshop versions 21.2.6 (and earlier) and 22.3 (and earlier) a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c0ccdafeac427964a6b2670b1b3a96ef25093d9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c0ccdafeac427964a6b2670b1b3a96ef25093d9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210902/3916fcd2/attachment.htm>

More information about the debian-security-tracker-commits mailing list