[Git][security-tracker-team/security-tracker][master] CVE-2021-43455/freelan <not-affected> (Windows only) & other Windows NFUs

Neil Williams (@codehelp) codehelp at debian.org
Wed Apr 6 09:41:50 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cb8c0996 by Neil Williams at 2022-04-06T09:41:29+01:00
CVE-2021-43455/freelan <not-affected> (Windows only) & other Windows NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -29151,23 +29151,25 @@ CVE-2021-43465
 CVE-2021-43464 (A Remiote Code Execution (RCE) vulnerability exiss in Subrion CMS 4.2. ...)
 	TODO: check
 CVE-2021-43463 (An Unquoted Service Path vulnerability exists in Ext2Fsd v0.68 via a s ...)
-	TODO: check
+	NOT-FOR-US: Ext2 File System Driver for Windows
 CVE-2021-43462 (A Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Serve ...)
-	TODO: check
+	NOT-FOR-US: Rumble Mail Server
 CVE-2021-43461 (Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Server  ...)
-	TODO: check
+	NOT-FOR-US: Rumble Mail Server
 CVE-2021-43460 (An Unquoted Service Path vulnerability exists in System Explorer 7.0.0 ...)
-	TODO: check
+	NOT-FOR-US: System Explorer
 CVE-2021-43459 (A Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Serve ...)
-	TODO: check
+	NOT-FOR-US: Rumble Mail Server
 CVE-2021-43458 (An Unquoted Service Path vulnerability exits in Vembu BDR 4.2.0.1 via  ...)
-	TODO: check
+	NOT-FOR-US: Vembu BDR Suite
 CVE-2021-43457 (An Unquoted Service Path vulnerability exists in bVPN 2.5.1 via a spec ...)
-	TODO: check
+	NOT-FOR-US: no-free_vpn
 CVE-2021-43456 (An Unquoted Service Path vulnerablility exists in Rumble Mail Server 0 ...)
-	TODO: check
+	NOT-FOR-US: Rumble Mail Server
 CVE-2021-43455 (An Unquoted Service Path vulnerability exists in FreeLAN 2.2 via a spe ...)
-	TODO: check
+	- freelan <not-affected> (Windows only)
+	NOTE: https://github.com/freelan-developers/freelan/issues/234
+	NOTE: https://www.exploit-db.com/exploits/49630
 CVE-2021-43454 (An Unquoted Service Path vulnerability exists in AnyTXT Searcher 1.2.3 ...)
 	NOT-FOR-US: AnyTXT Searcher for Windows
 CVE-2021-43453



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb8c0996f20a2bae8c152f73734673129fb3b488

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb8c0996f20a2bae8c152f73734673129fb3b488
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220406/c6776cc8/attachment.htm>

More information about the debian-security-tracker-commits mailing list