[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Neil Williams (@codehelp)]

Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b7d0ead5 by Neil Williams at 2022-02-18T13:57:30+00:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6204,7 +6204,7 @@ CVE-2022-0267
 CVE-2021-46399
 	RESERVED
 CVE-2021-46398 (A Cross-Site Request Forgery vulnerability exists in Filebrowser <  ...)
-	TODO: check
+	NOT-FOR-US: FileBrowser
 CVE-2021-46397
 	RESERVED
 CVE-2021-46396
@@ -6258,7 +6258,7 @@ CVE-2021-46373
 CVE-2021-46372
 	RESERVED
 CVE-2021-46371 (antd-admin 5.5.0 is affected by an incorrect access control vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: antd-admin
 CVE-2021-46370
 	RESERVED
 CVE-2021-46369
@@ -6402,7 +6402,7 @@ CVE-2021-46321 (Tenda AC Series Router AC11_V02.03.01.104_CN was discovered to c
 CVE-2021-46320 (In OpenZeppelin <=v4.4.0, initializer functions that are invoked se ...)
 	NOT-FOR-US: OpenZeppelin
 CVE-2021-46319 (Remote Code Execution (RCE) vulnerability exists in D-Link Router DIR- ...)
-	TODO: check
+	NOT-FOR-US: Dlink DIR-846 Router
 CVE-2021-46318
 	RESERVED
 CVE-2021-46317
@@ -7890,11 +7890,11 @@ CVE-2021-46254
 CVE-2021-46253 (A cross-site scripting (XSS) vulnerability in the Create Post function ...)
 	NOT-FOR-US: Anchor CMS
 CVE-2021-46252 (A Cross-Site Request Forgery (CSRF) in RequirementsBypassPage.php of S ...)
-	TODO: check
+	NOT-FOR-US: scratch-confirmaccount-v3
 CVE-2021-46251 (A reflected cross-site scripting (XSS) in ScratchOAuth2 before commit  ...)
-	TODO: check
+	NOT-FOR-US: ScratchOAuth2
 CVE-2021-46250 (An issue in SOA2Login::commented of ScratchOAuth2 before commit a91879 ...)
-	TODO: check
+	NOT-FOR-US: ScratchOAuth2
 CVE-2021-46249 (An authorization bypass exploited by a user-controlled key in Specific ...)
 	TODO: check
 CVE-2021-46248
@@ -26406,7 +26406,7 @@ CVE-2021-41601
 CVE-2021-41600
 	RESERVED
 CVE-2021-41599 (A remote code execution vulnerability was identified in GitHub Enterpr ...)
-	TODO: check
+	NOT-FOR-US: GitHub Enterprise Server
 CVE-2021-41598 (A UI misrepresentation vulnerability was identified in GitHub Enterpri ...)
 	NOT-FOR-US: GitHub Enterprise Server
 CVE-2021-41597 (SuiteCRM through 7.11.21 is vulnerable to CSRF, with resultant remote  ...)
@@ -71162,7 +71162,7 @@ CVE-2021-23684
 CVE-2021-23683
 	RESERVED
 CVE-2021-23682 (This affects the package litespeed.js before 0.3.12; the package appwr ...)
-	TODO: check
+	NOT-FOR-US: litespeed.js
 CVE-2021-23681
 	RESERVED
 CVE-2021-23680



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7d0ead527342403662ed908ce785941b837123b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7d0ead527342403662ed908ce785941b837123b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220218/afeccc4d/attachment.htm>