[Git][security-tracker-team/security-tracker][master] Process some NFUs

Fri Sep 24 21:29:35 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0c8014a2 by Salvatore Bonaccorso at 2021-09-24T22:28:06+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -37,11 +37,11 @@ CVE-2021-41590
 CVE-2021-41589
 	RESERVED
 CVE-2021-41588 (In Gradle Enterprise before 2021.1.3, a crafted request can trigger de ...)
-	TODO: check
+	NOT-FOR-US: Gradle Enterprise
 CVE-2021-41587 (In Gradle Enterprise before 2021.1.3, an attacker with the ability to  ...)
-	TODO: check
+	NOT-FOR-US: Gradle Enterprise
 CVE-2021-41586 (In Gradle Enterprise before 2021.1.3, an attacker with the ability to  ...)
-	TODO: check
+	NOT-FOR-US: Gradle Enterprise
 CVE-2021-3828
 	RESERVED
 CVE-2021-41585
@@ -2935,9 +2935,9 @@ CVE-2021-40312
 CVE-2021-40311
 	RESERVED
 CVE-2021-40310 (OpenSIS Community Edition version 8.0 is affected by a cross-site scri ...)
-	TODO: check
+	NOT-FOR-US: OpenSIS
 CVE-2021-40309 (A SQL injection vulnerability exists in the Take Attendance functional ...)
-	TODO: check
+	NOT-FOR-US: OpenSIS
 CVE-2021-40308
 	RESERVED
 CVE-2021-40307
@@ -3409,13 +3409,13 @@ CVE-2021-40104
 CVE-2021-40103
 	RESERVED
 CVE-2021-40102 (An issue was discovered in Concrete CMS through 8.5.5. Arbitrary File  ...)
-	TODO: check
+	NOT-FOR-US: Concrete CMS
 CVE-2021-40101
 	RESERVED
 CVE-2021-40100 (An issue was discovered in Concrete CMS through 8.5.5. Stored XSS can  ...)
-	TODO: check
+	NOT-FOR-US: Concrete CMS
 CVE-2021-40099 (An issue was discovered in Concrete CMS through 8.5.5. Fetching the up ...)
-	TODO: check
+	NOT-FOR-US: Concrete CMS
 CVE-2021-40098
 	RESERVED
 CVE-2021-40097
@@ -32542,7 +32542,7 @@ CVE-2021-28132 (LUCY Security Awareness Software through 4.7.x allows unauthenti
 CVE-2021-28131 (Impala sessions use a 16 byte secret to verify that the session is not ...)
 	NOT-FOR-US: Apache Impala
 CVE-2021-28130 (Dr.Web Firewall 12.5.2.4160 on Windows incorrectly restricts applicati ...)
-	TODO: check
+	NOT-FOR-US: Dr.Web Firewall
 CVE-2021-28129
 	RESERVED
 CVE-2021-28128 (In Strapi through 3.6.0, the admin panel allows the changing of one's  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0c8014a2dcd3467f75d254b12d949ef7074e846b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0c8014a2dcd3467f75d254b12d949ef7074e846b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210924/8f1cc458/attachment.htm>
