[Git][security-tracker-team/security-tracker][master] Process some NFUs

Neil Williams (@codehelp) codehelp at debian.org
Fri Sep 2 09:13:14 BST 2022 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5d4b1c62 by Neil Williams at 2022-09-02T09:12:55+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -53343,7 +53343,7 @@ CVE-2021-45029 (Groovy Code Injection & SpEL Injection which lead to Remote
 CVE-2021-45028
 	RESERVED
 CVE-2021-45027 (An arbitrary file download vulnerability in Oliver v5 Library Server V ...)
-	TODO: check
+	NOT-FOR-US: Oliver Library Server
 CVE-2021-45026 (ASG technologies ASG-Zena Cross Platform Server Enterprise Edition 4.2 ...)
 	NOT-FOR-US: ASG technologies
 CVE-2021-45025 (ASG technologies ( A Rocket Software Company) ASG-Zena Cross Platform  ...)
@@ -58499,9 +58499,9 @@ CVE-2021-43769
 CVE-2021-43768
 	RESERVED
 CVE-2021-43767 (Odyssey passes to client unencrypted bytes from man-in-the-middle When ...)
-	TODO: check
+	NOT-FOR-US: yandex/odyssey
 CVE-2021-43766 (Odyssey passes to server unencrypted bytes from man-in-the-middle When ...)
-	TODO: check
+	NOT-FOR-US: yandex/odyssey
 CVE-2021-43765 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below)  ...)
 	NOT-FOR-US: Adobe
 CVE-2021-43764 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below)  ...)
@@ -59826,7 +59826,7 @@ CVE-2021-43311
 CVE-2021-43310
 	RESERVED
 CVE-2021-43309 (An exponential ReDoS (Regular Expression Denial of Service) can be tri ...)
-	TODO: check
+	NOT-FOR-US: Node uri-template-lite
 CVE-2021-43308 (An exponential ReDoS (Regular Expression Denial of Service) can be tri ...)
 	NOT-FOR-US: Node markdown-link-extractor
 CVE-2021-43307 (An exponential ReDoS (Regular Expression Denial of Service) can be tri ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d4b1c62d28de4b11a49c79eaa77092136e2d737

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d4b1c62d28de4b11a49c79eaa77092136e2d737
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220902/dc325092/attachment.htm>

More information about the debian-security-tracker-commits mailing list