[Git][security-tracker-team/security-tracker][master] Process NFUs

Neil Williams (@codehelp) codehelp at debian.org
Fri Feb 11 13:49:30 GMT 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2551d479 by Neil Williams at 2022-02-11T13:48:55+00:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -70295,7 +70295,7 @@ CVE-2021-23472 (This affects versions before 1.19.1 of package bootstrap-table.
 CVE-2021-23471
 	RESERVED
 CVE-2021-23470 (This affects the package putil-merge before 3.8.0. The merge() functio ...)
-	TODO: check
+	NOT-FOR-US: Node putil-merge
 CVE-2021-23469
 	RESERVED
 CVE-2021-23468
@@ -71416,7 +71416,7 @@ CVE-2021-22956 (An uncontrolled resource consumption vulnerability exists in Cit
 CVE-2021-22955 (A unauthenticated denial of service vulnerability exists in Citrix ADC ...)
 	NOT-FOR-US: Citrix
 CVE-2021-22954 (A cross-site request forgery vulnerability exists in Concrete CMS < ...)
-	TODO: check
+	NOT-FOR-US: Concrete CMS
 CVE-2021-22953 (A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to c ...)
 	NOT-FOR-US: Concrete CMS
 CVE-2021-22952 (A vulnerability found in UniFi Talk application V1.12.3 and earlier pe ...)
@@ -71813,7 +71813,7 @@ CVE-2021-22819 (A CWE-1021 Improper Restriction of Rendered UI Layers or Frames
 CVE-2021-22818 (A CWE-307 Improper Restriction of Excessive Authentication Attempts vu ...)
 	NOT-FOR-US: Schneider Electric
 CVE-2021-22817 (A CWE-276: Incorrect Default Permissions vulnerability exists that cou ...)
-	TODO: check
+	NOT-FOR-US: Schneider Electric
 CVE-2021-22816 (A CWE-754: Improper Check for Unusual or Exceptional Conditions vulner ...)
 	NOT-FOR-US: Schneider Electric
 CVE-2021-22815 (A CWE-200: Information Exposure vulnerability exists which could cause ...)
@@ -78197,7 +78197,7 @@ CVE-2021-20879
 CVE-2021-20878
 	RESERVED
 CVE-2021-20877 (Cross-site scripting vulnerability in Canon laser printers and small o ...)
-	TODO: check
+	NOT-FOR-US: Canon printer firmware
 CVE-2021-20876 (Path traversal vulnerability in GroupSession Free edition ver5.1.1 and ...)
 	NOT-FOR-US: GroupSession
 CVE-2021-20875 (Open redirect vulnerability in GroupSession Free edition ver5.1.1 and  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2551d479ba4017381a2ed7b5d098ce127ce2f5b3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2551d479ba4017381a2ed7b5d098ce127ce2f5b3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220211/0d34da67/attachment.htm>

More information about the debian-security-tracker-commits mailing list