[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Sep 8 09:41:27 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7e367c5f by Salvatore Bonaccorso at 2021-09-08T10:40:57+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1280,7 +1280,7 @@ CVE-2021-40145 (** DISPUTED ** gdImageGd2Ptr in gd_gd2.c in the GD Graphics Libr
 CVE-2021-40144
 	RESERVED
 CVE-2021-40143 (Sonatype Nexus Repository 3.x through 3.33.1-01 is vulnerable to an HT ...)
-	TODO: check
+	NOT-FOR-US: Sonatype
 CVE-2021-40142 (In OPC Foundation Local Discovery Server (LDS) before 1.04.402.463, re ...)
 	NOT-FOR-US: OPC Foundation Local Discovery Server (LDS)
 CVE-2021-40141
@@ -2598,21 +2598,21 @@ CVE-2021-39505
 CVE-2021-39504
 	RESERVED
 CVE-2021-39503 (PHPMyWind 5.6 is vulnerable to Remote Code Execution. Becase input is  ...)
-	TODO: check
+	NOT-FOR-US: PHPMyWind
 CVE-2021-39502
 	RESERVED
 CVE-2021-39501 (EyouCMS 1.5.4 is vulnerable to Open Redirect. An attacker can redirect ...)
-	TODO: check
+	NOT-FOR-US: EyouCMS
 CVE-2021-39500 (Eyoucms 1.5.4 is vulnerable to Directory Traversal. Due to a lack of i ...)
-	TODO: check
+	NOT-FOR-US: EyouCMS
 CVE-2021-39499 (A Cross-site scripting (XSS) vulnerability in Users in Qiong ICP EyouC ...)
-	TODO: check
+	NOT-FOR-US: EyouCMS
 CVE-2021-39498
 	RESERVED
 CVE-2021-39497 (eyoucms 1.5.4 lacks sanitization of input data, allowing an attacker t ...)
-	TODO: check
+	NOT-FOR-US: EyouCMS
 CVE-2021-39496 (Eyoucms 1.5.4 lacks sanitization of input data, allowing an attacker t ...)
-	TODO: check
+	NOT-FOR-US: EyouCMS
 CVE-2021-39495
 	RESERVED
 CVE-2021-39494



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e367c5f0393fa0694a2c8fc37be8050b6ffb6f2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e367c5f0393fa0694a2c8fc37be8050b6ffb6f2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210908/73838b63/attachment.htm>

More information about the debian-security-tracker-commits mailing list