[Git][security-tracker-team/security-tracker][master] Unify naming of ShowDoc NFU

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jan 26 21:25:50 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
96dec461 by Salvatore Bonaccorso at 2022-01-26T22:25:22+01:00
Unify naming of ShowDoc NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -188,7 +188,7 @@ CVE-2022-0364
 CVE-2022-0363
 	RESERVED
 CVE-2022-0362 (SQL Injection in Packagist showdoc/showdoc prior to 2.10.3. ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2022-0361 (Heap-based Buffer Overflow in Conda vim prior to 8.2. ...)
 	- vim <unfixed>
 	[bullseye] - vim <no-dsa> (Minor issue)
@@ -5985,7 +5985,7 @@ CVE-2021-45960 (In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or mor
 	NOTE: https://github.com/libexpat/libexpat/issues/531
 	NOTE: https://github.com/libexpat/libexpat/pull/534
 CVE-2022-0079 (showdoc is vulnerable to Generation of Error Message Containing Sensit ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2022-0078
 	RESERVED
 CVE-2021-45959
@@ -7001,7 +7001,7 @@ CVE-2021-4173 (vim is vulnerable to Use After Free ...)
 	NOTE: Introduced after: https://github.com/vim/vim/commit/04b12697838b232b8b17c553ccc74cf1f1bdb81c (v8.2.0695)
 	NOTE: Fixed by: https://github.com/vim/vim/commit/9c23f9bb5fe435b28245ba8ac65aa0ca6b902c04 (v8.2.3902)
 CVE-2021-4172 (Cross-site Scripting (XSS) - Stored in GitHub repository star7th/showd ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-4171 (calibre-web is vulnerable to Business Logic Errors ...)
 	NOT-FOR-US: calibre-web
 CVE-2021-45679 (Certain NETGEAR devices are affected by privilege escalation. This aff ...)
@@ -7385,7 +7385,7 @@ CVE-2021-4169 (livehelperchat is vulnerable to Improper Neutralization of Input
 CVE-2021-45492
 	RESERVED
 CVE-2021-4168 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-45491
 	RESERVED
 CVE-2021-45490
@@ -12010,7 +12010,7 @@ CVE-2021-44207 (Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials. ..
 CVE-2021-4018 (snipe-it is vulnerable to Improper Neutralization of Input During Web  ...)
 	NOT-FOR-US: snipe-it
 CVE-2021-4017 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-44206
 	RESERVED
 CVE-2021-44205
@@ -12337,7 +12337,7 @@ CVE-2021-4001 (A race condition was found in the Linux kernel's ebpf verifier be
 	[stretch] - linux <not-affected> (Vulnerable code introduced later)
 	NOTE: https://git.kernel.org/linus/353050be4c19e102178ccc05988101887c25ae53
 CVE-2021-4000 (showdoc is vulnerable to URL Redirection to Untrusted Site ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-3999 [Off-by-one buffer overflow/underflow in getcwd()]
 	RESERVED
 	- glibc 2.33-4
@@ -12398,7 +12398,7 @@ CVE-2021-3995
 CVE-2021-3994 (django-helpdesk is vulnerable to Improper Neutralization of Input Duri ...)
 	NOT-FOR-US: django-helpdesk
 CVE-2021-3993 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-3992 (kimai2 is vulnerable to Improper Access Control ...)
 	NOT-FOR-US: kimai2
 CVE-2021-44078 (An issue was discovered in split_region in uc.c in Unicorn Engine befo ...)
@@ -12408,9 +12408,9 @@ CVE-2021-44077 (Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plu
 CVE-2021-3991
 	RESERVED
 CVE-2021-3990 (showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random N ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-3989 (showdoc is vulnerable to URL Redirection to Untrusted Site ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-3988
 	RESERVED
 CVE-2021-3987
@@ -24515,9 +24515,9 @@ CVE-2021-40526 (Incorrect calculation of buffer size vulnerability in Peleton TT
 CVE-2021-40525 (Apache James ManagedSieve implementation alongside with the file stora ...)
 	NOT-FOR-US: Apache James
 CVE-2021-3776 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-3775 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-3774 (Meross Smart Wi-Fi 2 Way Wall Switch (MSS550X), on its 3.1.3 version a ...)
 	NOT-FOR-US: Meross Smart Wi-Fi 2 Way Wall Switch
 CVE-2021-3773
@@ -30541,7 +30541,7 @@ CVE-2021-3685
 CVE-2021-3684
 	RESERVED
 CVE-2021-3683 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-38113 (In addBouquet in js/bqe.js in OpenWebif (aka e2openplugin-OpenWebif) t ...)
 	NOT-FOR-US: OpenWebif (aka e2openplugin-OpenWebif)
 CVE-2021-38112 (In the Amazon AWS WorkSpaces client 3.0.10 through 3.1.8 on Windows, a ...)
@@ -31138,14 +31138,14 @@ CVE-2021-3681
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1989407
 	TODO: check, needs verifying the affected ansible/ansible-base components
 CVE-2021-3680 (showdoc is vulnerable to Missing Cryptographic Step ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-3679 (A lack of CPU resource in the Linux kernel tracing module functionalit ...)
 	{DSA-4978-1 DLA-2843-1 DLA-2785-1}
 	- linux 5.14.6-1
 	[buster] - linux 4.19.208-1
 	NOTE: https://git.kernel.org/linus/67f0d6d9883c13174669f88adac4f0ee656cc16a
 CVE-2021-3678 (showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random N ...)
-	NOT-FOR-US: showdoc
+	NOT-FOR-US: ShowDoc
 CVE-2021-37931 (Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestr ...)
 	NOT-FOR-US: Zoho ManageEngine
 CVE-2021-37930 (Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestr ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96dec4614819d9280dc21b5eb1587fba8242ab06

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96dec4614819d9280dc21b5eb1587fba8242ab06
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220126/1127ce47/attachment.htm>

More information about the debian-security-tracker-commits mailing list