[Git][security-tracker-team/security-tracker][master] Process some NFUs

Sat Jan 15 09:04:46 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8e4fa1ea by Salvatore Bonaccorso at 2022-01-15T10:04:10+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1367,13 +1367,13 @@ CVE-2021-46173
 CVE-2021-46172
 	RESERVED
 CVE-2021-46171 (Modex v2.11 was discovered to contain a NULL pointer dereference in se ...)
-	TODO: check
+	NOT-FOR-US: Modex
 CVE-2021-46170 (An issue was discovered in JerryScript commit a6ab5e9. There is an Use ...)
 	TODO: check
 CVE-2021-46169 (Modex v2.11 was discovered to contain an Use-After-Free vulnerability  ...)
-	TODO: check
+	NOT-FOR-US: Modex
 CVE-2021-46168 (Spin v6.5.1 was discovered to contain an out-of-bounds write in lex()  ...)
-	TODO: check
+	NOT-FOR-US: Spin
 CVE-2021-46167
 	RESERVED
 CVE-2021-44458 (Linux users running Lens 5.2.6 and earlier could be compromised by vis ...)
@@ -3579,7 +3579,7 @@ CVE-2022-22292
 CVE-2022-22291
 	RESERVED
 CVE-2022-22290 (Incorrect download source UI in Downloads in Samsung Internet prior to ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2022-22289 (Improper access control vulnerability in S Assistant prior to version  ...)
 	NOT-FOR-US: Samsung
 CVE-2022-22288 (Improper authorization vulnerability in Galaxy Store prior to 4.5.36.5 ...)
@@ -4175,7 +4175,7 @@ CVE-2021-45775 (GNU Inetutils 2.2.16-cf091 was discovered to contain an infinite
 CVE-2021-45774 (A NULL pointer dereference in help() at inetutils/telnet/commands.c of ...)
 	TODO: check
 CVE-2021-45773 (A NULL pointer dereference in CS104_IPAddress_setFromString at src/iec ...)
-	TODO: check
+	NOT-FOR-US: lib60870
 CVE-2021-45772
 	RESERVED
 CVE-2021-45771
@@ -4183,7 +4183,7 @@ CVE-2021-45771
 CVE-2021-45770
 	RESERVED
 CVE-2021-45769 (A NULL pointer dereference in AcseConnection_parseMessage at src/mms/i ...)
-	TODO: check
+	NOT-FOR-US: libiec61850
 CVE-2021-45768
 	RESERVED
 CVE-2021-45767 (GPAC 1.1.0 was discovered to contain an invalid memory address derefer ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e4fa1eabaf4d7ced8109411172f81abffde4fc5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e4fa1eabaf4d7ced8109411172f81abffde4fc5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220115/ef57248c/attachment-0001.htm>
