[Git][security-tracker-team/security-tracker][master] NFUs

Thu Sep 30 20:16:53 BST 2021


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aad0d35d by Moritz Muehlenhoff at 2021-09-30T21:16:21+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -67,7 +67,7 @@ CVE-2021-41797
 CVE-2021-41796
 	RESERVED
 CVE-2021-41795 (The Safari app extension bundled with 1Password for Mac 7.7.0 through  ...)
-	TODO: check
+	NOT-FOR-US: 1Password
 CVE-2021-41794
 	RESERVED
 CVE-2021-41793
@@ -151,7 +151,7 @@ CVE-2021-3831
 CVE-2021-41765
 	RESERVED
 CVE-2021-41764 (A cross-site request forgery (CSRF) vulnerability exists in Streama up ...)
-	TODO: check
+	NOT-FOR-US: Streama
 CVE-2021-41763
 	RESERVED
 CVE-2021-41762
@@ -1722,7 +1722,7 @@ CVE-2021-41036
 CVE-2021-41035
 	RESERVED
 CVE-2021-41034 (The build of some language stacks of Eclipse Che version 6 includes pu ...)
-	TODO: check
+	NOT-FOR-US: Eclipse Che
 CVE-2021-41033 (In all released versions of Eclipse Equinox, at least until version 4. ...)
 	NOT-FOR-US: Eclipse Equinox
 CVE-2021-41032
@@ -2594,7 +2594,7 @@ CVE-2021-40653
 CVE-2021-40652
 	RESERVED
 CVE-2021-40651 (OS4Ed OpenSIS Community 8.0 is vulnerable to a local file inclusion vu ...)
-	TODO: check
+	NOT-FOR-US: OS4Ed OpenSIS Community
 CVE-2021-40650
 	RESERVED
 CVE-2021-40649
@@ -5586,7 +5586,7 @@ CVE-2021-39344
 CVE-2021-39343
 	RESERVED
 CVE-2021-39342 (The Credova_Financial WordPress plugin discloses a site's associated C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-39341
 	RESERVED
 CVE-2021-39340
@@ -13683,11 +13683,11 @@ CVE-2021-35947 (The public share controller in the ownCloud server before versio
 CVE-2021-35946 (A receiver of a federated share with access to the database with ownCl ...)
 	- owncloud <removed>
 CVE-2021-35945 (Couchbase Server 6.5.x, 6.6.0 through 6.6.2, and 7.0.0, has a Buffer O ...)
-	TODO: check
+	NOT-FOR-US: Couchbase Server
 CVE-2021-35944 (Couchbase Server 6.5.x, 6.6.x through 6.6.2, and 7.0.0 has a Buffer Ov ...)
-	TODO: check
+	NOT-FOR-US: Couchbase Server
 CVE-2021-35943 (Couchbase Server 6.5.x and 6.6.x through 6.6.2 has Incorrect Access Co ...)
-	TODO: check
+	NOT-FOR-US: Couchbase Server
 CVE-2021-35942 (The wordexp function in the GNU C Library (aka glibc) through 2.33 may ...)
 	- glibc 2.31-13 (bug #990542)
 	[buster] - glibc <no-dsa> (Minor issue)
@@ -38393,13 +38393,13 @@ CVE-2021-25964
 CVE-2021-25963
 	RESERVED
 CVE-2021-25962 (“Shuup” application in versions 0.4.2 to 2.10.8 is affecte ...)
-	TODO: check
+	NOT-FOR-US: Shuup
 CVE-2021-25961 (In “SuiteCRM” application, v7.1.7 through v7.10.31 and v7. ...)
-	TODO: check
+	NOT-FOR-US: SuiteCRM
 CVE-2021-25960 (In “SuiteCRM” application, v7.11.18 through v7.11.19 and v ...)
-	TODO: check
+	NOT-FOR-US: SuiteCRM
 CVE-2021-25959 (In OpenCRX, versions v4.0.0 through v5.1.0 are vulnerable to reflected ...)
-	TODO: check
+	NOT-FOR-US: OpenCRX
 CVE-2021-25958 (In Apache Ofbiz, versions v17.12.01 to v17.12.07 implement a try catch ...)
 	NOT-FOR-US: Apache Ofbiz
 CVE-2021-25957 (In “Dolibarr” application, v2.8.1 to v13.0.2 are vulnerabl ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aad0d35d4468959badb8708be1a9994968ddb551

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aad0d35d4468959badb8708be1a9994968ddb551
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210930/c40c9384/attachment-0001.htm>
