[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed Sep 15 21:28:48 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0ed4012b by Salvatore Bonaccorso at 2021-09-15T22:28:23+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -457,7 +457,7 @@ CVE-2021-41063
 CVE-2021-41062
 	RESERVED
 CVE-2021-41061 (In RIOT-OS 2021.01, nonce reuse in 802.15.4 encryption in the ieee8201 ...)
-	TODO: check
+	NOT-FOR-US: RIOT-OS
 CVE-2021-41060
 	RESERVED
 CVE-2021-41059
@@ -910,7 +910,7 @@ CVE-2021-40847
 CVE-2021-40846
 	RESERVED
 CVE-2021-40845 (The web part of Zenitel AlphaCom XE Audio Server through 11.2.3.10, ca ...)
-	TODO: check
+	NOT-FOR-US: Zenitel
 CVE-2021-40844
 	RESERVED
 CVE-2021-40843
@@ -1822,15 +1822,15 @@ CVE-2021-40450
 CVE-2021-40449
 	RESERVED
 CVE-2021-40448 (Microsoft Accessibility Insights for Android Information Disclosure Vu ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-40447 (Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-40446
 	RESERVED
 CVE-2021-40445
 	RESERVED
 CVE-2021-40444 (Microsoft MSHTML Remote Code Execution Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-40443
 	RESERVED
 CVE-2021-40442
@@ -1838,7 +1838,7 @@ CVE-2021-40442
 CVE-2021-40441
 	RESERVED
 CVE-2021-40440 (Microsoft Dynamics Business Central Cross-site Scripting Vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2021-3764 [DoS in ccp_run_aes_gcm_cmd() function]
 	RESERVED
 	- linux <unfixed>
@@ -2323,7 +2323,7 @@ CVE-2021-40240
 CVE-2021-40239
 	RESERVED
 CVE-2021-40238 (A Cross Site Scriptiong (XSS) vulnerability exists in the admin panel  ...)
-	TODO: check
+	NOT-FOR-US: Webuzo
 CVE-2021-40237
 	RESERVED
 CVE-2021-40236
@@ -2485,11 +2485,11 @@ CVE-2021-40159
 CVE-2021-40158
 	RESERVED
 CVE-2021-40157 (A user may be tricked into opening a malicious FBX file which may expl ...)
-	TODO: check
+	NOT-FOR-US: Autodesk
 CVE-2021-40156 (A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020, 2021 ...)
-	TODO: check
+	NOT-FOR-US: Autodesk
 CVE-2021-40155 (A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020, 2021 ...)
-	TODO: check
+	NOT-FOR-US: Autodesk
 CVE-2021-3747
 	RESERVED
 CVE-2021-40154



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ed4012b1c62026956aef05a08baa4321400dbcf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ed4012b1c62026956aef05a08baa4321400dbcf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210915/7b8a6d4c/attachment.htm>
