[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Neil Williams (@codehelp)]

Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3cc7e33b by Neil Williams at 2022-04-06T10:03:06+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20096,13 +20096,13 @@ CVE-2021-45896 (Nokia FastMile 3TG00118ABAD52 devices allow privilege escalation
 CVE-2021-45895 (Netgen Tags Bundle 3.4.x before 3.4.11 and 4.0.x before 4.0.15 allows  ...)
 	NOT-FOR-US: Netgen Tags Bundle
 CVE-2021-45894 (An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. There is  ...)
-	TODO: check
+	NOT-FOR-US: Softwarebuero Zauner ARC
 CVE-2021-45893 (An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. There is  ...)
-	TODO: check
+	NOT-FOR-US: Softwarebuero Zauner ARC
 CVE-2021-45892 (An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. There is  ...)
-	TODO: check
+	NOT-FOR-US: Softwarebuero Zauner ARC
 CVE-2021-45891 (An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that all ...)
-	TODO: check
+	NOT-FOR-US: Softwarebuero Zauner ARC
 CVE-2021-45890 (basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows authenti ...)
 	NOT-FOR-US: AuthGuard
 CVE-2021-45889 (An issue was discovered in PONTON X/P Messenger before 3.11.2. Several ...)
@@ -26068,13 +26068,13 @@ CVE-2021-44140 (Remote attackers may delete arbitrary files in a system hosting
 CVE-2021-44139 (Sentinel 1.8.2 is vulnerable to Server-side request forgery (SSRF). ...)
 	NOT-FOR-US: alibaba/Sentinel
 CVE-2021-44138 (There is a Directory traversal vulnerability in Caucho Resin, as distr ...)
-	TODO: check
+	NOT-FOR-US: Caucho Technology Resin
 CVE-2021-44137
 	RESERVED
 CVE-2021-44136
 	RESERVED
 CVE-2021-44135 (pagekit all versions, as of 15-10-2021, is vulnerable to SQL Injection ...)
-	TODO: check
+	NOT-FOR-US: Pagekit CMS
 CVE-2021-44134
 	RESERVED
 CVE-2021-44133
@@ -26143,9 +26143,9 @@ CVE-2021-44111 (A Directory Traversal vulnerability exists in S-Cart 6.7 via dow
 CVE-2021-44110
 	RESERVED
 CVE-2021-44109 (A buffer overflow in lib/sbi/message.c in Open5GS 2.3.6 and earlier al ...)
-	TODO: check
+	NOT-FOR-US: Open5GS
 CVE-2021-44108 (A null pointer dereference in src/amf/namf-handler.c in Open5GS 2.3.6  ...)
-	TODO: check
+	NOT-FOR-US: Open5GS
 CVE-2021-44107
 	RESERVED
 CVE-2021-44106
@@ -29149,7 +29149,7 @@ CVE-2021-43466 (In the thymeleaf-spring5:3.0.12 component, thymeleaf combined wi
 CVE-2021-43465
 	RESERVED
 CVE-2021-43464 (A Remiote Code Execution (RCE) vulnerability exiss in Subrion CMS 4.2. ...)
-	TODO: check
+	NOT-FOR-US: Subrion CMS
 CVE-2021-43463 (An Unquoted Service Path vulnerability exists in Ext2Fsd v0.68 via a s ...)
 	NOT-FOR-US: Ext2 File System Driver for Windows
 CVE-2021-43462 (A Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Serve ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3cc7e33b15fbacb82b46ddd6cb15eccb9555c27d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3cc7e33b15fbacb82b46ddd6cb15eccb9555c27d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220406/07726fca/attachment.htm>