[Git][security-tracker-team/security-tracker][master] Process NFUs

Fri Feb 4 20:24:47 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e1abeca1 by Salvatore Bonaccorso at 2022-02-04T21:24:23+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3622,7 +3622,7 @@ CVE-2022-23318
 CVE-2022-23317
 	RESERVED
 CVE-2022-23316 (An issue was discovered in taoCMS v3.0.2. There is an arbitrary file r ...)
-	TODO: check
+	NOT-FOR-US: taoCMS
 CVE-2022-23315 (MCMS v5.2.4 was discovered to contain an arbitrary file upload vulnera ...)
 	NOT-FOR-US: MCMS
 CVE-2022-23314 (MCMS v5.2.4 was discovered to contain a SQL injection vulnerability vi ...)
@@ -3850,7 +3850,7 @@ CVE-2021-46322 (Duktape v2.99.99 was discovered to contain a SEGV vulnerability
 CVE-2021-46321
 	RESERVED
 CVE-2021-46320 (In OpenZeppelin <=v4.4.0, initializer functions that are invoked se ...)
-	TODO: check
+	NOT-FOR-US: OpenZeppelin
 CVE-2021-46319
 	RESERVED
 CVE-2021-46318
@@ -10085,7 +10085,7 @@ CVE-2021-45270
 CVE-2021-45269
 	RESERVED
 CVE-2021-45268 (A Cross Site Request Forgery (CSRF) vulnerability exists in Backdrop C ...)
-	TODO: check
+	NOT-FOR-US: Backdrop CMS
 CVE-2021-45267 (An invalid memory address dereference vulnerability exists in gpac 1.1 ...)
 	- gpac <unfixed>
 	NOTE: https://github.com/gpac/gpac/issues/1965
@@ -11335,7 +11335,7 @@ CVE-2021-44985
 CVE-2021-44984
 	RESERVED
 CVE-2021-44983 (In taocms 3.0.1 after logging in to the background, there is an Arbitr ...)
-	TODO: check
+	NOT-FOR-US: taocms
 CVE-2021-44982
 	RESERVED
 CVE-2021-44981 (In QuickBox Pro v2.5.8 and below, the config.php file has a variable w ...)
@@ -11345,9 +11345,9 @@ CVE-2021-44980
 CVE-2021-44979
 	RESERVED
 CVE-2021-44978 (iCMS <= 8.0.0 allows users to add and render a comtom template, whi ...)
-	TODO: check
+	NOT-FOR-US: iCMS
 CVE-2021-44977 (In iCMS <=8.0.0, a directory traversal vulnerability allows an atta ...)
-	TODO: check
+	NOT-FOR-US: iCMS
 CVE-2021-44976
 	RESERVED
 CVE-2021-44975
@@ -11524,15 +11524,15 @@ CVE-2021-44905
 CVE-2021-44904
 	RESERVED
 CVE-2021-44903 (Micro-Star International (MSI) Center Pro <= 2.0.16.0 is vulnerable ...)
-	TODO: check
+	NOT-FOR-US: Micro-Star International (MSI) Center Pro
 CVE-2021-44902
 	RESERVED
 CVE-2021-44901 (Micro-Star International (MSI) Dragon Center <= 2.0.116.0 is vulner ...)
-	TODO: check
+	NOT-FOR-US: Micro-Star International (MSI) Dragon Center
 CVE-2021-44900 (Micro-Star International (MSI) App Player <= 4.280.1.6309 is vulner ...)
-	TODO: check
+	NOT-FOR-US: Micro-Star International (MSI) App Player
 CVE-2021-44899 (Micro-Star International (MSI) Center <= 1.0.31.0 is vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: Micro-Star International (MSI) Center
 CVE-2021-44898
 	RESERVED
 CVE-2021-44897
@@ -18864,7 +18864,7 @@ CVE-2021-43075
 CVE-2021-43074
 	RESERVED
 CVE-2021-43073 (A improper neutralization of special elements used in an os command (' ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2021-43072
 	RESERVED
 CVE-2021-43071 (A heap-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1abeca127402fddd0ac7c98fa709656a8392965

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1abeca127402fddd0ac7c98fa709656a8392965
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220204/05c9d670/attachment.htm>
