[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Thu Mar 31 08:29:04 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4d943dc5 by Neil Williams at 2022-03-31T08:28:49+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -79097,9 +79097,10 @@ CVE-2021-23853 (In Bosch IP cameras, improper validation of the HTTP header allo
 CVE-2021-23852 (An authenticated attacker with administrator rights Bosch IP cameras c ...)
 	NOT-FOR-US: Bosch
 CVE-2021-23851 (A specially crafted TCP/IP packet may cause the camera recovery image  ...)
-	TODO: check
+	NOT-FOR-US: Bosch
+	NOTE: https://psirt.bosch.com/security-advisories/bosch-sa-446276-bt.html
 CVE-2021-23850 (A specially crafted TCP/IP packet may cause a camera recovery image te ...)
-	TODO: check
+	NOT-FOR-US: Bosch
 CVE-2021-23849 (A vulnerability in the web-based interface allows an unauthenticated r ...)
 	NOT-FOR-US: Bosch IP cameras
 CVE-2021-23848 (An error in the URL handler Bosch IP cameras may lead to a reflected c ...)
@@ -97496,7 +97497,7 @@ CVE-2021-1035 (In setLaunchIntent of BluetoothDevicePickerPreferenceController.j
 CVE-2021-1034 (In getLine1NumberForDisplay of PhoneInterfaceManager.java, there is ap ...)
 	NOT-FOR-US: Android
 CVE-2021-1033 (In createGeneralSlice of ConnectedDevicesSliceProvider.java.java, ther ...)
-	TODO: check
+	NOT-FOR-US: Android TV
 CVE-2021-1032 (In getMimeGroup of PackageManagerService.java, there is a possible way ...)
 	NOT-FOR-US: Android
 CVE-2021-1031 (In cancelNotificationsFromListener of NotificationManagerService.java, ...)
@@ -97562,7 +97563,7 @@ CVE-2021-1002 (In WT_Interpolate of eas_wtengine.c, there is a possible out of b
 CVE-2021-1001 (In PVInitVideoEncoder of mp4enc_api.cpp, there is a possible out of bo ...)
 	NOT-FOR-US: Android
 CVE-2021-1000 (In createBluetoothDeviceSlice of ConnectedDevicesSliceProvider.java, t ...)
-	TODO: check
+	NOT-FOR-US: Android TV
 CVE-2021-0999 (In the broadcast definition in AndroidManifest.xml, there is a possibl ...)
 	NOT-FOR-US: Android
 CVE-2021-0998 (In 'ih264e_find_bskip_params()' of ih264e_me.c, there is a possible ou ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d943dc52fbc36a85bc5d5cad6c47aba803d187d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d943dc52fbc36a85bc5d5cad6c47aba803d187d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220331/a783d1cc/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list