[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jan 29 08:27:59 GMT 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8aa72985 by Salvatore Bonaccorso at 2022-01-29T09:27:36+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2638,9 +2638,9 @@ CVE-2022-23313
 CVE-2022-22137
 	RESERVED
 CVE-2022-21801 (A denial of service vulnerability exists in the netserver recv_command ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2022-21796 (A memory corruption vulnerability exists in the netserver parse_comman ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2022-0274 (Cross-site Scripting (XSS) - Stored in NuGet OrchardCore.Application.C ...)
 	NOT-FOR-US: Orchard CMS
 CVE-2022-0273
@@ -3380,7 +3380,7 @@ CVE-2022-23180
 CVE-2022-23179
 	RESERVED
 CVE-2022-21199 (An information disclosure vulnerability exists due to the hardcoded TL ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2022-0217 [Unauthenticated Remote Denial of Service Attack in the WebSocket interface]
 	RESERVED
 	{DSA-5047-1}
@@ -3596,11 +3596,11 @@ CVE-2022-23105 (Jenkins Active Directory Plugin 2.25 and earlier does not encryp
 CVE-2022-23102
 	RESERVED
 CVE-2022-21236 (An information disclosure vulnerability exists due to a web server mis ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2022-21217 (An out-of-bounds write vulnerability exists in the device TestEmail fu ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2022-21134 (A firmware update vulnerability exists in the "update&quo ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2022-0194
 	RESERVED
 CVE-2022-0193
@@ -11961,129 +11961,129 @@ CVE-2021-44420 (In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3
 	NOTE: https://github.com/django/django/commit/333c65603032c377e682cdbd7388657a5463a05a (3.2.10)
 	NOTE: https://github.com/django/django/commit/7cf7d74e8a754446eeb85cacf2fef1247e0cb6d7 (2.2.25)
 CVE-2021-44419 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44418 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44417 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44416 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44415 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44414 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44413 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44412 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44411 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44410 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44409 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44408 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44407 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44406 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44405 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44404 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44403 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44402 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44401 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44400 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44399 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44398 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44397 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44396 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44395 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44394
 	RESERVED
 CVE-2021-44393 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44392 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44391 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44390 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44389 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44388 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44387 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44386 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44385 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44384 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44383 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44382 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44381 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44380 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44379 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44378 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44377 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44376 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44375
 	RESERVED
 CVE-2021-44374 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44373 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44372 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44371 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44370 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44369 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44368 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44367 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44366
 	RESERVED
 CVE-2021-44365 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44364 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44363 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44362 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44361 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44360 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44359 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44358 (A denial of service vulnerability exists in the cgiserver.cgi JSON com ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-44357
 	RESERVED
 CVE-2021-44356
@@ -25382,7 +25382,7 @@ CVE-2021-40425
 CVE-2021-40424
 	RESERVED
 CVE-2021-40423 (A denial of service vulnerability exists in the cgiserver.cgi API comm ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40422
 	RESERVED
 CVE-2021-40421
@@ -25390,37 +25390,37 @@ CVE-2021-40421
 CVE-2021-40420
 	RESERVED
 CVE-2021-40419 (A firmware update vulnerability exists in the 'factory' binary of reol ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40418 (When parsing a file that is submitted to the DPDecoder service as a jo ...)
 	NOT-FOR-US: DaVinci Resolve
 CVE-2021-40417 (When parsing a file that is submitted to the DPDecoder service as a jo ...)
 	NOT-FOR-US: DaVinci Resolve
 CVE-2021-40416 (An incorrect default permission vulnerability exists in the cgiserver. ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40415 (An incorrect default permission vulnerability exists in the cgiserver. ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40414 (An incorrect default permission vulnerability exists in the cgiserver. ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40413 (An incorrect default permission vulnerability exists in the cgiserver. ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40412 (An OScommand injection vulnerability exists in the device network sett ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40411 (An OS command injection vulnerability exists in the device network set ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40410 (An OS command injection vulnerability exists in the device network set ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40409 (An OS command injection vulnerability exists in the device network set ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40408 (An OS command injection vulnerability exists in the device network set ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40407 (An OS command injection vulnerability exists in the device network set ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40406 (A denial of service vulnerability exists in the cgiserver.cgi session  ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40405
 	RESERVED
 CVE-2021-40404 (An authentication bypass vulnerability exists in the cgiserver.cgi Log ...)
-	TODO: check
+	NOT-FOR-US: Reolink
 CVE-2021-40403
 	RESERVED
 CVE-2021-40402



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8aa7298540f0693b38ddd37c69c05981d9fc9c4f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8aa7298540f0693b38ddd37c69c05981d9fc9c4f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220129/5ee49502/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list