[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Wed May 25 11:40:37 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
34182988 by Neil Williams at 2022-05-25T11:39:57+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -44976,7 +44976,7 @@ CVE-2021-41715 (libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/
 	NOTE: https://github.com/libsixel/libsixel/pull/28
 	NOTE: https://github.com/libsixel/libsixel/issues/27
 CVE-2021-41714 (In Tipask < 3.5.9, path parameters entered by the user are not vali ...)
-	TODO: check
+	NOT-FOR-US: sdfsky/tipask
 CVE-2021-41713
 	RESERVED
 CVE-2021-41712
@@ -66540,7 +66540,7 @@ CVE-2021-32971 (Null pointer dereference in SuiteLink server while processing co
 CVE-2021-32970 (Data can be copied without validation in the built-in web server in Mo ...)
 	NOT-FOR-US: Moxa
 CVE-2021-32969 (Delta Electronics DIAScreen versions prior to 1.1.0 are vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2021-32968 (Two buffer overflows in the built-in web server in Moxa NPort IAW5000A ...)
 	NOT-FOR-US: Moxa
 CVE-2021-32967 (Delta Electronics DIAEnergie Version 1.7.5 and prior may allow an atta ...)
@@ -66548,13 +66548,13 @@ CVE-2021-32967 (Delta Electronics DIAEnergie Version 1.7.5 and prior may allow a
 CVE-2021-32966
 	RESERVED
 CVE-2021-32965 (Delta Electronics DIAScreen versions prior to 1.1.0 are vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2021-32964 (The AGG Software Web Server version 4.0.40.1014 and prior is vulnerabl ...)
-	TODO: check
+	NOT-FOR-US: AGG Software
 CVE-2021-32963 (Null pointer dereference in SuiteLink server while processing commands ...)
 	NOT-FOR-US: Suitelink
 CVE-2021-32962 (The AGG Software Web Server version 4.0.40.1014 and prior is vulnerabl ...)
-	TODO: check
+	NOT-FOR-US: AGG Software
 CVE-2021-32961 (A getfile function in MDT AutoSave versions prior to v6.02.06 enables  ...)
 	NOT-FOR-US: Auvesy-MDT
 CVE-2021-32960 (Rockwell Automation FactoryTalk Services Platform v6.11 and earlier, i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/34182988dc1cc63ac1453d555c60fd0fb4585a22

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/34182988dc1cc63ac1453d555c60fd0fb4585a22
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220525/9a1d3482/attachment.htm>

More information about the debian-security-tracker-commits mailing list