[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Wed Sep 8 09:48:20 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2551de41 by Salvatore Bonaccorso at 2021-09-08T10:48:00+02:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3570,9 +3570,9 @@ CVE-2021-39124
 CVE-2021-39123
 	RESERVED
 CVE-2021-39122 (Affected versions of Atlassian Jira Server and Data Center allow anony ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2021-39121 (Affected versions of Atlassian Jira Server and Data Center allow authe ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2021-39120
 	RESERVED
 CVE-2021-39119 (Affected versions of Atlassian Jira Server and Data Center allow users ...)
@@ -3582,7 +3582,7 @@ CVE-2021-39118
 CVE-2021-39117 (The AssociateFieldToScreens page in Atlassian Jira Server and Data Cen ...)
 	NOT-FOR-US: Atlassian
 CVE-2021-39116 (Affected versions of Atlassian Jira Server and Data Center allow remot ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2021-39115 (Affected versions of Atlassian Jira Service Management Server and Data ...)
 	NOT-FOR-US: Atlassian
 CVE-2021-39114
@@ -4432,13 +4432,13 @@ CVE-2021-38711 (In gitit before 0.15.0.0, the Export feature can be exploited to
 	[stretch] - gitit <no-dsa> (Minor issue)
 	NOTE: https://github.com/jgm/gitit/commit/eed32638f4f6e3b2f4b8a9a04c4b72001acf9ad8
 CVE-2021-38707 (Persistent cross-site scripting (XSS) vulnerabilities in ClinicCases 7 ...)
-	TODO: check
+	NOT-FOR-US: ClinicCases
 CVE-2021-38706 (messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL inject ...)
-	TODO: check
+	NOT-FOR-US: ClinicCases
 CVE-2021-38705 (ClinicCases 7.3.3 is affected by Cross-Site Request Forgery (CSRF). A  ...)
-	TODO: check
+	NOT-FOR-US: ClinicCases
 CVE-2021-38704 (Multiple reflected cross-site scripting (XSS) vulnerabilities in Clini ...)
-	TODO: check
+	NOT-FOR-US: ClinicCases
 CVE-2021-38703 (Wireless devices running certain Arcadyan-derived firmware (such as KP ...)
 	NOT-FOR-US: Wireless devices running certain Arcadyan-derived firmware
 CVE-2021-3708 (D-Link router DSL-2750U with firmware vME1.16 or prior versions is vul ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2551de41b8dff52015f0f2ca90177e2844476cd9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2551de41b8dff52015f0f2ca90177e2844476cd9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210908/0ef7a3e9/attachment-0001.htm>
