[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Apr 15 09:21:04 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2ac11d3c by Salvatore Bonaccorso at 2022-04-15T10:20:27+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3959,7 +3959,7 @@ CVE-2022-27850
 CVE-2022-27849
 	RESERVED
 CVE-2022-27848 (Authenticated (admin+ user) Stored Cross-Site Scripting (XSS) in Moder ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-27847 (Cross-Site Request Forgery (CSRF) vulnerability in Yooslider Yoo Slide ...)
 	TODO: check
 CVE-2022-27846 (Cross-Site Request Forgery (CSRF) vulnerability in Yooslider Yoo Slide ...)
@@ -27027,7 +27027,7 @@ CVE-2021-44396 (A denial of service vulnerability exists in the cgiserver.cgi JS
 CVE-2021-44395 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
 	NOT-FOR-US: Reolink
 CVE-2021-44394 (Multiple denial of service vulnerabilities exist in the cgiserver.cgi  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44393 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
 	NOT-FOR-US: Reolink
 CVE-2021-44392 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
@@ -27065,7 +27065,7 @@ CVE-2021-44377 (A denial of service vulnerability exists in the cgiserver.cgi JS
 CVE-2021-44376 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
 	NOT-FOR-US: Reolink
 CVE-2021-44375 (Multiple denial of service vulnerabilities exist in the cgiserver.cgi  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44374 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
 	NOT-FOR-US: Reolink
 CVE-2021-44373 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
@@ -27083,7 +27083,7 @@ CVE-2021-44368 (A denial of service vulnerability exists in the cgiserver.cgi JS
 CVE-2021-44367 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
 	NOT-FOR-US: Reolink
 CVE-2021-44366 (Multiple denial of service vulnerabilities exist in the cgiserver.cgi  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44365 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
 	NOT-FOR-US: Reolink
 CVE-2021-44364 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
@@ -27101,13 +27101,13 @@ CVE-2021-44359 (A denial of service vulnerability exists in the cgiserver.cgi JS
 CVE-2021-44358 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
 	NOT-FOR-US: Reolink
 CVE-2021-44357 (Multiple denial of service vulnerabilities exist in the cgiserver.cgi  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44356 (Multiple denial of service vulnerabilities exist in the cgiserver.cgi  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44355 (Multiple denial of service vulnerabilities exist in the cgiserver.cgi  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44354 (Multiple denial of service vulnerabilities exist in the cgiserver.cgi  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-4034 (A local privilege escalation vulnerability was found on polkit's pkexe ...)
 	{DSA-5059-1 DLA-2899-1}
 	- policykit-1 0.105-31.1
@@ -40723,7 +40723,7 @@ CVE-2021-40407 (An OS command injection vulnerability exists in the device netwo
 CVE-2021-40406 (A denial of service vulnerability exists in the cgiserver.cgi session  ...)
 	NOT-FOR-US: Reolink
 CVE-2021-40405 (A denial of service vulnerability exists in the cgiserver.cgi Upgrade  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40404 (An authentication bypass vulnerability exists in the cgiserver.cgi Log ...)
 	NOT-FOR-US: Reolink
 CVE-2021-40403 (An information disclosure vulnerability exists in the pick-and-place r ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ac11d3cb345ff5f55c075bce3fca838c177e116

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ac11d3cb345ff5f55c075bce3fca838c177e116
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220415/8338cd06/attachment.htm>

More information about the debian-security-tracker-commits mailing list