[Git][security-tracker-team/security-tracker][master] extra nextcloud (NFU) and owncloud <removed>

Neil Williams (@codehelp) codehelp at debian.org
Thu Sep 9 11:34:55 BST 2021 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e5a9db61 by Neil Williams at 2021-09-09T11:34:36+01:00
extra nextcloud (NFU) and owncloud <removed>

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -576,7 +576,7 @@ CVE-2021-40539 (Zoho ManageEngine ADSelfService Plus version 6113 and prior is v
 CVE-2021-40538
 	RESERVED
 CVE-2021-40537 (Server Side Request Forgery (SSRF) vulnerability exists in owncloud/us ...)
-	TODO: check
+	- owncloud <removed>
 CVE-2021-40536
 	RESERVED
 CVE-2021-40535
@@ -18415,7 +18415,7 @@ CVE-2021-32803 (The npm package "tar" (aka node-tar) before versions 6.1.2, 5.0.
 	NOTE: https://github.com/npm/node-tar/security/advisories/GHSA-r628-mhmh-qjhw
 	NOTE: https://github.com/npm/node-tar/commit/9dbdeb6df8e9dbd96fa9e84341b9d74734be6c20
 CVE-2021-32802 (Nextcloud server is an open source, self hosted personal cloud. Nextcl ...)
-	TODO: check
+	- nextcloud-server <itp> (bug #941708)
 CVE-2021-32801 (Nextcloud server is an open source, self hosted personal cloud. In aff ...)
 	- nextcloud-server <itp> (bug #941708)
 CVE-2021-32800 (Nextcloud server is an open source, self hosted personal cloud. In aff ...)
@@ -18481,7 +18481,7 @@ CVE-2021-32784
 CVE-2021-32783 (Contour is a Kubernetes ingress controller using Envoy proxy. In Conto ...)
 	NOT-FOR-US: Countour
 CVE-2021-32782 (Nextcloud Circles is an open source social network built for the nextc ...)
-	TODO: check
+	NOT-FOR-US: Nextcloud Circles
 CVE-2021-32781 (Envoy is an open source L7 proxy and communication bus designed for la ...)
 	- envoyproxy <itp> (bug #987544)
 CVE-2021-32780 (Envoy is an open source L7 proxy and communication bus designed for la ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5a9db61b62d53371a9b6a23b401b40f491f67c0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5a9db61b62d53371a9b6a23b401b40f491f67c0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210909/e33ad160/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list