Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 2551de41 by Salvatore Bonaccorso at 2021-09-08T10:48:00+02:00 Process some more NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -3570,9 +3570,9 @@ CVE-2021-39124 CVE-2021-39123 RESERVED CVE-2021-39122 (Affected versions of Atlassian Jira Server and Data Center allow anony ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2021-39121 (Affected versions of Atlassian Jira Server and Data Center allow authe ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2021-39120 RESERVED CVE-2021-39119 (Affected versions of Atlassian Jira Server and Data Center allow users ...) @@ -3582,7 +3582,7 @@ CVE-2021-39118 CVE-2021-39117 (The AssociateFieldToScreens page in Atlassian Jira Server and Data Cen ...) NOT-FOR-US: Atlassian CVE-2021-39116 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2021-39115 (Affected versions of Atlassian Jira Service Management Server and Data ...) NOT-FOR-US: Atlassian CVE-2021-39114 @@ -4432,13 +4432,13 @@ CVE-2021-38711 (In gitit before 0.15.0.0, the Export feature can be exploited to [stretch] - gitit <no-dsa> (Minor issue) NOTE: https://github.com/jgm/gitit/commit/eed32638f4f6e3b2f4b8a9a04c4b72001acf9ad8 CVE-2021-38707 (Persistent cross-site scripting (XSS) vulnerabilities in ClinicCases 7 ...) - TODO: check + NOT-FOR-US: ClinicCases CVE-2021-38706 (messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL inject ...) - TODO: check + NOT-FOR-US: ClinicCases CVE-2021-38705 (ClinicCases 7.3.3 is affected by Cross-Site Request Forgery (CSRF). A ...) - TODO: check + NOT-FOR-US: ClinicCases CVE-2021-38704 (Multiple reflected cross-site scripting (XSS) vulnerabilities in Clini ...) - TODO: check + NOT-FOR-US: ClinicCases CVE-2021-38703 (Wireless devices running certain Arcadyan-derived firmware (such as KP ...) NOT-FOR-US: Wireless devices running certain Arcadyan-derived firmware CVE-2021-3708 (D-Link router DSL-2750U with firmware vME1.16 or prior versions is vul ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2551de41b8dff52015f0f2ca90177e2844476cd9 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2551de41b8dff52015f0f2ca90177e2844476cd9 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits