Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f80344d7 by Salvatore Bonaccorso at 2021-01-28T09:22:06+01:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2021-3333
CVE-2021-3332
RESERVED
CVE-2021-3331 (WinSCP before 5.17.10 allows remote attackers to execute
arbitrary pro ...)
- TODO: check
+ NOT-FOR-US: WinSCP
CVE-2021-3330
RESERVED
CVE-2021-3329
@@ -87,7 +87,7 @@ CVE-2021-3320
CVE-2021-3319
RESERVED
CVE-2021-3318 (attach/ajax.php in DzzOffice through 2.02.1 allows XSS via the
editori ...)
- TODO: check
+ NOT-FOR-US: DzzOffice
CVE-2021-26274
RESERVED
CVE-2021-26273
@@ -570,7 +570,7 @@ CVE-2021-26069
CVE-2021-26068
RESERVED
CVE-2021-26067 (Affected versions of Atlassian Bamboo allow an unauthenticated
remote ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2021-26066
RESERVED
CVE-2021-26065
@@ -8148,11 +8148,11 @@ CVE-2021-22657
CVE-2021-22656
RESERVED
CVE-2021-22655 (Multiple out-of-bounds read issues have been identified in the
way the ...)
- TODO: check
+ NOT-FOR-US: Fuji Electric
CVE-2021-22654
RESERVED
CVE-2021-22653 (Multiple out-of-bounds write issues have been identified in
the way th ...)
- TODO: check
+ NOT-FOR-US: Fuji Electric
CVE-2021-22652
RESERVED
CVE-2021-22651
@@ -8176,15 +8176,15 @@ CVE-2021-22643
CVE-2021-22642
RESERVED
CVE-2021-22641 (A heap-based buffer overflow issue has been identified in the
way the ...)
- TODO: check
+ NOT-FOR-US: Fuji Electric
CVE-2021-22640
RESERVED
CVE-2021-22639 (An uninitialized pointer issue has been identified in the way
the appl ...)
- TODO: check
+ NOT-FOR-US: Fuji Electric
CVE-2021-22638
RESERVED
CVE-2021-22637 (Multiple stack-based buffer overflow issues have been
identified in th ...)
- TODO: check
+ NOT-FOR-US: Fuji Electric
CVE-2021-22636
RESERVED
CVE-2021-22635
@@ -10797,7 +10797,7 @@ CVE-2020-36014
CVE-2020-36013
RESERVED
CVE-2020-36012 (Stored XSS vulnerability in BDTASK Multi-Store Inventory
Management Sy ...)
- TODO: check
+ NOT-FOR-US: BDTASK Multi-Store Inventory Management System
CVE-2020-36011 (A cross-site scripting (XSS) issue in Add Patient Form in
QDOCS Smart ...)
NOT-FOR-US: QDOCS Smart Hospital Management System
CVE-2020-36010
@@ -26630,15 +26630,15 @@ CVE-2020-27301
CVE-2020-27300
RESERVED
CVE-2020-27299 (The affected product is vulnerable to an out-of-bounds read,
which may ...)
- TODO: check
+ NOT-FOR-US: OPC UA Tunneller
CVE-2020-27298 (Philips Interventional Workspot (Release 1.3.2, 1.4.0, 1.4.1,
1.4.3, 1 ...)
NOT-FOR-US: Philips
CVE-2020-27297 (The affected product is vulnerable to a heap-based buffer
overflow, wh ...)
- TODO: check
+ NOT-FOR-US: OPC UA Tunneller
CVE-2020-27296
RESERVED
CVE-2020-27295 (The affected product has uncontrolled resource consumption
issues, whi ...)
- TODO: check
+ NOT-FOR-US: OPC UA Tunneller
CVE-2020-27294
RESERVED
CVE-2020-27293 (Delta Electronics CNCSoft-B Versions 1.0.0.2 and prior has a
type conf ...)
@@ -26652,7 +26652,7 @@ CVE-2020-27290
CVE-2020-27289 (Delta Electronics CNCSoft-B Versions 1.0.0.2 and prior has a
null poin ...)
NOT-FOR-US: Delta Electronics CNCSoft-B
CVE-2020-27288 (An untrusted pointer dereference has been identified in the
way TPEdit ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics (Delta)
CVE-2020-27287 (Delta Electronics CNCSoft-B Versions 1.0.0.2 and prior is
vulnerable t ...)
NOT-FOR-US: Delta Electronics CNCSoft-B
CVE-2020-27286
@@ -26660,7 +26660,7 @@ CVE-2020-27286
CVE-2020-27285 (The default configuration of Crimson 3.1 (Build versions prior
to 3119 ...)
NOT-FOR-US: Crimson
CVE-2020-27284 (TPEditor (v1.98 and prior) is vulnerable to two out-of-bounds
write in ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics (Delta)
CVE-2020-27283 (An attacker could send a specially crafted message to Crimson
3.1 (Bui ...)
NOT-FOR-US: Crimson
CVE-2020-27282
@@ -26668,7 +26668,7 @@ CVE-2020-27282
CVE-2020-27281 (A stack-based buffer overflow may exist in Delta Electronics
CNCSoft S ...)
NOT-FOR-US: Delta Electronics CNCSoft ScreenEditor
CVE-2020-27280 (A use after free issue has been identified in the way
ISPSoft(v3.12 an ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics (Delta)
CVE-2020-27279 (A NULL pointer deference vulnerability has been identified in
the prot ...)
NOT-FOR-US: Crimson
CVE-2020-27278
@@ -26680,7 +26680,7 @@ CVE-2020-27276 (SOOIL Developments Co Ltd
DiabecareRS,AnyDana-i & AnyDana-A,
CVE-2020-27275 (Delta Electronics DOPSoft Version 4.0.8.21 and prior is
vulnerable to ...)
NOT-FOR-US: Delta Electronics DOPSoft
CVE-2020-27274 (Some parsing functions in the affected product do not check
the return ...)
- TODO: check
+ NOT-FOR-US: OPC UA Tunneller
CVE-2020-27273
RESERVED
CVE-2020-27272 (SOOIL Developments CoLtd DiabecareRS, AnyDana-i, AnyDana-A,
The commun ...)
@@ -30098,13 +30098,13 @@ CVE-2020-25787 (An issue was discovered in Tiny Tiny
RSS (aka tt-rss) before 202
CVE-2020-25786 (** UNSUPPORTED WHEN ASSIGNED ** webinc/js/info.php on D-Link
DIR-816L ...)
NOT-FOR-US: D-Link
CVE-2020-25785 (An issue was discovered on Accfly Wireless Security IR Camera
System 7 ...)
- TODO: check
+ NOT-FOR-US: Accfly Wireless Security IR Camera System 720P
CVE-2020-25784 (An issue was discovered on Accfly Wireless Security IR Camera
System 7 ...)
- TODO: check
+ NOT-FOR-US: Accfly Wireless Security IR Camera System 720P
CVE-2020-25783 (An issue was discovered on Accfly Wireless Security IR Camera
System 7 ...)
- TODO: check
+ NOT-FOR-US: Accfly Wireless Security IR Camera System 720P
CVE-2020-25782 (An issue was discovered on Accfly Wireless Security IR Camera
720P Sys ...)
- TODO: check
+ NOT-FOR-US: Accfly Wireless Security IR Camera System 720P
CVE-2020-25781 (An issue was discovered in file_download.php in MantisBT
before 2.24.3 ...)
- mantis <removed>
CVE-2020-25796 (An issue was discovered in the sized-chunks crate through
0.6.2 for Ru ...)
@@ -35549,23 +35549,23 @@ CVE-2020-23362
CVE-2020-23361 (phpList 3.5.3 allows type juggling for login bypass because ==
is used ...)
TODO: check
CVE-2020-23360 (oscommerce v2.3.4.1 has a functional problem in user
registration and ...)
- TODO: check
+ NOT-FOR-US: oscommerce
CVE-2020-23359 (WeBid 1.2.2 admin/newuser.php has an issue with password
rechecking du ...)
- TODO: check
+ NOT-FOR-US: WeBid
CVE-2020-23358
RESERVED
CVE-2020-23357
RESERVED
CVE-2020-23356 (dmin/kernel/api/login.class.phpin in nibbleblog v3.7.1c allows
type ju ...)
- TODO: check
+ NOT-FOR-US: nibbleblog
CVE-2020-23355 (** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** Codiad 2.8.4
/componetns/use ...)
- TODO: check
+ NOT-FOR-US: Codiad
CVE-2020-23354
RESERVED
CVE-2020-23353
RESERVED
CVE-2020-23352 (Z-BlogPHP 1.6.0 Valyria is affected by incorrect access
control. PHP l ...)
- TODO: check
+ NOT-FOR-US: Z-BlogPHP
CVE-2020-23351
RESERVED
CVE-2020-23350
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f80344d7b329d708a5f03594a5e37d049aead219
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f80344d7b329d708a5f03594a5e37d049aead219
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
