[Git][security-tracker-team/security-tracker][master] Process Android & Pixel NFUs

Neil Williams (@codehelp) codehelp at debian.org
Wed Apr 13 10:17:47 BST 2022



Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5224fab2 by Neil Williams at 2022-04-13T10:17:22+01:00
Process Android & Pixel NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41784,29 +41784,29 @@ CVE-2021-39816 (Adobe Bridge version 11.1 (and earlier) is affected by a memory
 CVE-2021-39815
 	RESERVED
 CVE-2021-39814 (In ppmp_validate_wsm of drm_fw.c, there is a possible out of bounds wr ...)
-	TODO: check
+	NOT-FOR-US: Pixel
 CVE-2021-39813
 	RESERVED
 CVE-2021-39812 (In TBD of TBD, there is a possible out of bounds read due to a use aft ...)
-	TODO: check
+	NOT-FOR-US: Pixel
 CVE-2021-39811
 	RESERVED
 CVE-2021-39810
 	RESERVED
 CVE-2021-39809 (In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible o ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39808 (In createNotificationChannelGroup of PreferencesHelper.java, there is  ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39807 (In handleNfcStateChanged of SecureNfcEnabler.java, there is a possible ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39806
 	RESERVED
 CVE-2021-39805 (In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bo ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39804 (In reinit of HeifDecoderImpl.cpp, there is a possible crash due to a m ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39803 (In ~Impl of C2AllocatorIon.cpp, there is a possible out of bounds read ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39802 (In change_pte_range of mprotect.c , there is a possible way to make a  ...)
 	- linux <undetermined>
 	NOTE: https://source.android.com/security/bulletin/2022-04-01
@@ -41817,11 +41817,11 @@ CVE-2021-39800 (In ion_ioctl of ion-ioctl.c, there is a possible way to leak ker
 	- linux <not-affected> (Android-specific driver)
 	NOTE: https://source.android.com/security/bulletin/2022-04-01
 CVE-2021-39799 (In AttributionSource of AttributionSource.java, there is a possible pe ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39798 (In Bitmap_createFromParcel of Bitmap.cpp, there is a possible arbitrar ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39797 (In several functions of of LauncherApps.java, there is a possible esca ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2021-39796 (In HarmfulAppWarningActivity of HarmfulAppWarningActivity.java, there  ...)
 	- android-platform-frameworks-base <unfixed> (bug #1009626)
 	NOTE: https://android.googlesource.com/platform/frameworks/base/+/e74a2a320bf896bc30618ce486203bafe453c469



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5224fab26519d9e30f76d71e6daa8d9588e32ac6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5224fab26519d9e30f76d71e6daa8d9588e32ac6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220413/bda51b30/attachment.htm>


More information about the debian-security-tracker-commits mailing list