[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso Tue, 09 Mar 2021 12:50:17 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ea8b02b2 by Salvatore Bonaccorso at 2021-03-09T21:49:46+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -259,7 +259,7 @@ CVE-2021-28008
 CVE-2021-28007
        RESERVED
 CVE-2021-28006 (Web Based Quiz System 1.0 is affected by cross-site scripting 
(XSS) in ...)
-       TODO: check
+       NOT-FOR-US: Web Based Quiz System
 CVE-2021-28005
        RESERVED
 CVE-2021-28004
@@ -851,7 +851,7 @@ CVE-2021-27803 (A vulnerability was discovered in how 
p2p/p2p_pd.c in wpa_suppli
        NOTE: 
https://w1.fi/security/2021-1/wpa_supplicant-p2p-provision-discovery-processing-vulnerability.txt
        NOTE: 
https://w1.fi/security/2021-1/0001-P2P-Fix-a-corner-case-in-peer-addition-based-on-PD-R.patch
 CVE-2021-3417 (An internal product security audit of LXCO, prior to version 
1.2.2, di ...)
-       TODO: check
+       NOT-FOR-US: Lenovo
 CVE-2021-3416 [net: infinite loop in loopback mode may lead to stack overflow]
        RESERVED
        - qemu <unfixed> (bug #984448)
@@ -14804,7 +14804,7 @@ CVE-2021-21512 (Dell EMC PowerProtect Cyber Recovery, 
version 19.7.0.1, contains
 CVE-2021-21511 (Dell EMC Avamar Server, versions 19.3 and 19.4 contain an 
Improper Aut ...)
        NOT-FOR-US: EMC Avamar Server
 CVE-2021-21510 (Dell iDRAC8 versions prior to 2.75.100.75 contain a host 
header inject ...)
-       TODO: check
+       NOT-FOR-US: Dell iDRAC8
 CVE-2021-21509
        RESERVED
 CVE-2021-21508
@@ -14812,13 +14812,13 @@ CVE-2021-21508
 CVE-2021-21507
        RESERVED
 CVE-2021-21506 (PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper 
input sani ...)
-       TODO: check
+       NOT-FOR-US: PowerScale OneFS
 CVE-2021-21505
        RESERVED
 CVE-2021-21504
        RESERVED
 CVE-2021-21503 (PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper 
input sani ...)
-       TODO: check
+       NOT-FOR-US: PowerScale OneFS
 CVE-2021-21502 (Dell PowerScale OneFS versions 8.1.0 &#8211; 9.1.0 contain a 
"use of S ...)
        NOT-FOR-US: Dell
 CVE-2021-21501
@@ -15557,7 +15557,7 @@ CVE-2021-21490
 CVE-2021-21489
        RESERVED
 CVE-2021-21488 (Knowledge Management versions 7.01, 7.02, 7.30, 7.31, 7.40, 
7.50 allow ...)
-       TODO: check
+       NOT-FOR-US: Knowledge Management
 CVE-2021-21487 (SAP Payment Engine version 500, does not perform necessary 
authorizati ...)
        NOT-FOR-US: SAP
 CVE-2021-21486 (SAP Enterprise Financial Services versions, 101, 102, 103, 
104, 105, 6 ...)
@@ -28787,7 +28787,7 @@ CVE-2020-28152
 CVE-2020-28151
        RESERVED
 CVE-2020-28150 (I-Net Software Clear Reports 20.10.136 web application accepts 
a user- ...)
-       TODO: check
+       NOT-FOR-US: I-Net Software Clear Reports
 CVE-2020-28149
        RESERVED
 CVE-2020-28148
@@ -30941,11 +30941,11 @@ CVE-2020-27578
 CVE-2020-27577
        RESERVED
 CVE-2020-27576 (Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site 
scripting (XS ...)
-       TODO: check
+       NOT-FOR-US: Maxum Rumpus
 CVE-2020-27575 (Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command 
injection vuln ...)
-       TODO: check
+       NOT-FOR-US: Maxum Rumpus
 CVE-2020-27574 (Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site 
request forge ...)
-       TODO: check
+       NOT-FOR-US: Maxum Rumpus
 CVE-2020-27573
        RESERVED
 CVE-2020-27572
@@ -39255,7 +39255,7 @@ CVE-2020-23969
 CVE-2020-23968 (Ilex International Sign&amp;go Workstation Security Suite 7.1 
allows e ...)
        NOT-FOR-US: Ilex International Sign&go Workstation Security Suite
 CVE-2020-23967 (Dr.Web Security Space versions 11 and 12 allow elevation of 
privilege  ...)
-       TODO: check
+       NOT-FOR-US: Dr.Web Security Space
 CVE-2020-23966
        RESERVED
 CVE-2020-23965
@@ -77235,9 +77235,9 @@ CVE-2020-8359
 CVE-2020-8358
        RESERVED
 CVE-2020-8357 (A denial of service vulnerability was reported in Lenovo 
PCManager, pr ...)
-       TODO: check
+       NOT-FOR-US: Lenovo
 CVE-2020-8356 (An internal product security audit of LXCO, prior to version 
1.2.2, di ...)
-       TODO: check
+       NOT-FOR-US: Lenovo
 CVE-2020-8355 (An internal product security audit of Lenovo XClarity 
Administrator (L ...)
        NOT-FOR-US: Lenovo
 CVE-2020-8354 (A potential vulnerability in the SMI callback function used in 
the Var ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea8b02b235106cc5074a63d734249a67b68237eb

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea8b02b235106cc5074a63d734249a67b68237eb
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process more NFUs

Reply via email to