[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Neil Williams (@codehelp)]

Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
3cc7e33b by Neil Williams at 2022-04-06T10:03:06+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20096,13 +20096,13 @@ CVE-2021-45896 (Nokia FastMile 3TG00118ABAD52 devices 
allow privilege escalation
 CVE-2021-45895 (Netgen Tags Bundle 3.4.x before 3.4.11 and 4.0.x before 4.0.15 
allows  ...)
        NOT-FOR-US: Netgen Tags Bundle
 CVE-2021-45894 (An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. 
There is  ...)
-       TODO: check
+       NOT-FOR-US: Softwarebuero Zauner ARC
 CVE-2021-45893 (An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. 
There is  ...)
-       TODO: check
+       NOT-FOR-US: Softwarebuero Zauner ARC
 CVE-2021-45892 (An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. 
There is  ...)
-       TODO: check
+       NOT-FOR-US: Softwarebuero Zauner ARC
 CVE-2021-45891 (An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., 
that all ...)
-       TODO: check
+       NOT-FOR-US: Softwarebuero Zauner ARC
 CVE-2021-45890 (basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows 
authenti ...)
        NOT-FOR-US: AuthGuard
 CVE-2021-45889 (An issue was discovered in PONTON X/P Messenger before 3.11.2. 
Several ...)
@@ -26068,13 +26068,13 @@ CVE-2021-44140 (Remote attackers may delete arbitrary 
files in a system hosting
 CVE-2021-44139 (Sentinel 1.8.2 is vulnerable to Server-side request forgery 
(SSRF). ...)
        NOT-FOR-US: alibaba/Sentinel
 CVE-2021-44138 (There is a Directory traversal vulnerability in Caucho Resin, 
as distr ...)
-       TODO: check
+       NOT-FOR-US: Caucho Technology Resin
 CVE-2021-44137
        RESERVED
 CVE-2021-44136
        RESERVED
 CVE-2021-44135 (pagekit all versions, as of 15-10-2021, is vulnerable to SQL 
Injection ...)
-       TODO: check
+       NOT-FOR-US: Pagekit CMS
 CVE-2021-44134
        RESERVED
 CVE-2021-44133
@@ -26143,9 +26143,9 @@ CVE-2021-44111 (A Directory Traversal vulnerability 
exists in S-Cart 6.7 via dow
 CVE-2021-44110
        RESERVED
 CVE-2021-44109 (A buffer overflow in lib/sbi/message.c in Open5GS 2.3.6 and 
earlier al ...)
-       TODO: check
+       NOT-FOR-US: Open5GS
 CVE-2021-44108 (A null pointer dereference in src/amf/namf-handler.c in 
Open5GS 2.3.6  ...)
-       TODO: check
+       NOT-FOR-US: Open5GS
 CVE-2021-44107
        RESERVED
 CVE-2021-44106
@@ -29149,7 +29149,7 @@ CVE-2021-43466 (In the thymeleaf-spring5:3.0.12 
component, thymeleaf combined wi
 CVE-2021-43465
        RESERVED
 CVE-2021-43464 (A Remiote Code Execution (RCE) vulnerability exiss in Subrion 
CMS 4.2. ...)
-       TODO: check
+       NOT-FOR-US: Subrion CMS
 CVE-2021-43463 (An Unquoted Service Path vulnerability exists in Ext2Fsd v0.68 
via a s ...)
        NOT-FOR-US: Ext2 File System Driver for Windows
 CVE-2021-43462 (A Cross Site Scripting (XSS) vulnerability exists in Rumble 
Mail Serve ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3cc7e33b15fbacb82b46ddd6cb15eccb9555c27d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3cc7e33b15fbacb82b46ddd6cb15eccb9555c27d
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits