[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Neil Williams (@codehelp)]

Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5bc81d9f by Neil Williams at 2022-05-09T10:22:17+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -49558,7 +49558,7 @@ CVE-2021-38489
 CVE-2021-38488 (Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to  ...)
 	NOT-FOR-US: Delta Electronics DIALink
 CVE-2021-38487 (RTI Connext DDS Professional, Connext DDS Secure versions 4.2x to 6.1. ...)
-	TODO: check
+	NOT-FOR-US: RTI Connext DDS
 CVE-2021-38486 (InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 cl ...)
 	NOT-FOR-US: InHand Networks IR615 Router
 CVE-2021-38485 (The affected product is vulnerable to improper input validation in the ...)
@@ -49638,11 +49638,11 @@ CVE-2021-38449 (Some API functions permit by-design writing or copying data into
 CVE-2021-38448 (The affected controllers do not properly sanitize the input containing ...)
 	NOT-FOR-US: Trane
 CVE-2021-38447 (OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker s ...)
-	TODO: check
+	NOT-FOR-US: OpenDDS
 CVE-2021-38446
 	RESERVED
 CVE-2021-38445 (OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter  ...)
-	TODO: check
+	NOT-FOR-US: OpenDDS
 CVE-2021-38444
 	RESERVED
 CVE-2021-38443 (Eclipse CycloneDDS versions prior to 0.8.0 improperly handle invalid s ...)
@@ -49654,7 +49654,7 @@ CVE-2021-38441 (Eclipse CycloneDDS versions prior to 0.8.0 are vulnerable to a w
 CVE-2021-38440 (FATEK Automation WinProladder versions 3.30 and prior is vulnerable to ...)
 	NOT-FOR-US: FATEK Automation
 CVE-2021-38439 (All versions of GurumDDS are vulnerable to heap-based buffer overflow, ...)
-	TODO: check
+	NOT-FOR-US: GurumNetworks
 CVE-2021-38438 (A use after free vulnerability in FATEK Automation WinProladder versio ...)
 	NOT-FOR-US: FATEK Automation
 CVE-2021-38437
@@ -49662,11 +49662,11 @@ CVE-2021-38437
 CVE-2021-38436 (FATEK Automation WinProladder versions 3.30 and prior lacks proper val ...)
 	NOT-FOR-US: FATEK Automation
 CVE-2021-38435 (RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6 ...)
-	TODO: check
+	NOT-FOR-US: RTI Connext DDS
 CVE-2021-38434 (FATEK Automation WinProladder versions 3.30 and prior lacks proper val ...)
 	NOT-FOR-US: FATEK Automation
 CVE-2021-38433 (RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6 ...)
-	TODO: check
+	NOT-FOR-US: RTI Connext DDS
 CVE-2021-38432 (FATEK Automation Communication Server Versions 1.13 and prior lacks pr ...)
 	NOT-FOR-US: FATEK Automation Communication Server
 CVE-2021-38431 (An authenticated user using Advantech WebAccess SCADA in versions 9.0. ...)
@@ -49674,7 +49674,7 @@ CVE-2021-38431 (An authenticated user using Advantech WebAccess SCADA in version
 CVE-2021-38430 (FATEK Automation WinProladder versions 3.30 and prior proper validatio ...)
 	NOT-FOR-US: FATEK Automation
 CVE-2021-38429 (OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker s ...)
-	TODO: check
+	NOT-FOR-US: OpenDDS
 CVE-2021-38428 (Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to  ...)
 	NOT-FOR-US: Delta Electronics DIALink
 CVE-2021-38427 (RTI Connext DDS Professional and Connext DDS Secure Versions 4.2.x to  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bc81d9f8ce8fbcfa8ba0de16a02b8e57349e09f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bc81d9f8ce8fbcfa8ba0de16a02b8e57349e09f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220509/26720936/attachment.htm>