Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
653bb286 by Salvatore Bonaccorso at 2021-01-05T21:25:00+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2021-3023
CVE-2021-3022 (An issue was discovered on LG mobile devices with Android OS 10
softwa ...)
NOT-FOR-US: LG mobile devices
CVE-2021-3021 (ISPConfig before 3.2.2 allows SQL injection. ...)
- TODO: check
+ NOT-FOR-US: ISPConfig
CVE-2021-3020
RESERVED
CVE-2021-22685
@@ -391,7 +391,7 @@ CVE-2021-22496
CVE-2021-22495 (An issue was discovered on Samsung mobile devices with O(8.x),
P(9.0), ...)
NOT-FOR-US: Samsung mobile devices
CVE-2021-22494 (An issue was discovered in the fingerprint scanner on Samsung
Note20 m ...)
- TODO: check
+ NOT-FOR-US: Samsung Note20 mobile devices
CVE-2021-22493 (An issue was discovered on Samsung mobile devices with O(8.x),
P(9.0), ...)
NOT-FOR-US: Samsung mobile devices
CVE-2021-22492 (An issue was discovered on Samsung mobile devices with O(8.x),
P(9.0), ...)
@@ -1061,7 +1061,7 @@ CVE-2021-22161
CVE-2021-22160
RESERVED
CVE-2020-36159 (Veritas Desktop and Laptop Option (DLO) before 9.5 disclosed
operation ...)
- TODO: check
+ NOT-FOR-US: Veritas
CVE-2021-3019 (ffay lanproxy 0.1 allows Directory Traversal to read
/../conf/config.p ...)
TODO: check
CVE-2021-3018 (ipeak Infosystems ibexwebCMS (aka IPeakCMS) 3.5 is vulnerable
to an un ...)
@@ -9990,7 +9990,7 @@ CVE-2020-29479 (An issue was discovered in Xen through
4.14.x. In the Ocaml xens
[stretch] - xen <end-of-life> (DSA 4602-1)
NOTE: https://xenbits.xen.org/xsa/advisory-353.html
CVE-2020-29478 (CA Service Catalog 17.2 and 17.3 contain a vulnerability in
the defaul ...)
- TODO: check
+ NOT-FOR-US: CA Service Catalog
CVE-2021-1635
RESERVED
CVE-2021-1634
@@ -21157,9 +21157,9 @@ CVE-2020-26048 (The file manager option in CuppaCMS
before 2019-11-12 allows an
CVE-2020-26047
RESERVED
CVE-2020-26046 (FUEL CMS 1.4.11 has stored XSS in Blocks/Navigation/Site
variables. Th ...)
- TODO: check
+ NOT-FOR-US: FUEL CMS
CVE-2020-26045 (FUEL CMS 1.4.11 allows SQL Injection via parameter 'name' in
/fuel/per ...)
- TODO: check
+ NOT-FOR-US: FUEL CMS
CVE-2020-26044
RESERVED
CVE-2020-26043 (An issue was discovered in Hoosk CMS v1.8.0. There is a XSS
vulnerabil ...)
@@ -49166,7 +49166,7 @@ CVE-2020-13543 (A code execution vulnerability exists
in the WebSocket functiona
CVE-2020-13542 (A local privilege elevation vulnerability exists in the file
system pe ...)
NOT-FOR-US: LogicalDoc
CVE-2020-13541 (An exploitable local privilege elevation vulnerability exists
in the f ...)
- TODO: check
+ NOT-FOR-US: Mobile-911 Server
CVE-2020-13540 (An exploitable local privilege elevation vulnerability exists
in the f ...)
TODO: check
CVE-2020-13539 (An exploitable local privilege elevation vulnerability exists
in the f ...)
@@ -66730,7 +66730,7 @@ CVE-2020-7204
CVE-2020-7203 (A potential security vulnerability has been identified in HPE
iLO Ampl ...)
NOT-FOR-US: HPE
CVE-2020-7202 (A potential security vulnerability has been identified in HPE
Integrat ...)
- TODO: check
+ NOT-FOR-US: HPE
CVE-2020-7201 (A potential security vulnerability has been identified in the
HPE Stor ...)
NOT-FOR-US: HPE
CVE-2020-7200 (A potential security vulnerability has been identified in HPE
Systems ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/653bb286fe42b4a8882bcfdbae1edd0dd93b7983
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/653bb286fe42b4a8882bcfdbae1edd0dd93b7983
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
