[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Wed Mar 30 11:58:08 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e3a400e5 by Neil Williams at 2022-03-30T11:57:22+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -29616,9 +29616,9 @@ CVE-2021-43112
 CVE-2021-43111
 	RESERVED
 CVE-2021-43110 (An Access Conrol vulnerability exists in PuneethReddyHC online-shoppin ...)
-	TODO: check
+	NOT-FOR-US: PuneethReddyHC online-shopping-system
 CVE-2021-43109 (An SQL Injection vulnerability exits in PuneethReddyHC online-shopping ...)
-	TODO: check
+	NOT-FOR-US: PuneethReddyHC online-shopping-system
 CVE-2021-43108
 	RESERVED
 CVE-2021-43107
@@ -30007,7 +30007,7 @@ CVE-2021-42972 (NoMachine Server is affected by Buffer Overflow. IOCTL Handler 0
 CVE-2021-42971
 	RESERVED
 CVE-2021-42970 (Cross Site Scripting (XSS) vulnerability exists in cxuucms v3 via the  ...)
-	TODO: check
+	NOT-FOR-US: cxuucms
 CVE-2021-42969
 	RESERVED
 CVE-2021-42968
@@ -30132,7 +30132,7 @@ CVE-2021-42913 (The SyncThru Web Service on Samsung SCX-6x55X printers allows an
 CVE-2021-42912 (FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command inj ...)
 	NOT-FOR-US: FiberHome ONU GPON AN5506-04-F RP2617
 CVE-2021-42911 (A Format String vulnerability exists in DrayTek Vigor 2960 <= 1.5.1 ...)
-	TODO: check
+	NOT-FOR-US: DrayTek Vigor2960 devices
 CVE-2021-42910
 	RESERVED
 CVE-2021-42909
@@ -34558,7 +34558,7 @@ CVE-2021-41596 (SuiteCRM before 7.10.33 and 7.11.22 allows information disclosur
 CVE-2021-41595 (SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via  ...)
 	NOT-FOR-US: SuiteCRM
 CVE-2021-41594 (In RSA Archer 6.9.SP1 P3, if some application functions are precluded  ...)
-	TODO: check
+	NOT-FOR-US: RSA Archer
 CVE-2021-41593 (Lightning Labs lnd before 0.13.3-beta allows loss of funds because of  ...)
 	NOT-FOR-US: Lightning Labs lnd
 CVE-2021-41592 (Blockstream c-lightning through 0.10.1 allows loss of funds because of ...)
@@ -76507,7 +76507,7 @@ CVE-2021-24964 (The LiteSpeed Cache WordPress plugin before 4.4.4 does not prope
 CVE-2021-24963 (The LiteSpeed Cache WordPress plugin before 4.4.4 does not escape the  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24962 (The WordPress File Upload Free and Pro WordPress plugins before 4.16.3 ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24961 (The WordPress File Upload WordPress plugin before 4.16.3, wordpress-fi ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24960 (The WordPress File Upload WordPress plugin before 4.16.3, wordpress-fi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e3a400e52c032e4feb4c9e94d4bf66767e5c7206

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e3a400e52c032e4feb4c9e94d4bf66767e5c7206
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220330/a5fdc826/attachment.htm>

More information about the debian-security-tracker-commits mailing list