Neil Williams pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
74ac4a13 by Neil Williams at 2021-09-28T08:35:08+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -522,13 +522,14 @@ CVE-2021-41525 (An issue related to modification of
otherwise restricted files t
CVE-2021-3821
RESERVED
CVE-2021-3820 (inflect is vulnerable to Inefficient Regular Expression
Complexity ...)
- TODO: check
+ NOT-FOR-US: Nodejs inflect
+ NOTE: https://github.com/pksunkara/inflect
CVE-2021-41524
RESERVED
CVE-2021-3819 (firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
...)
- TODO: check
+ NOT-FOR-US: firefly-iii
CVE-2021-3818 (grav is vulnerable to Reliance on Cookies without Validation
and Integ ...)
- TODO: check
+ NOT-FOR-US: Grav CMS
CVE-2021-3817
RESERVED
CVE-2021-41523
@@ -1917,7 +1918,7 @@ CVE-2021-40867 (Certain NETGEAR smart switches are
affected by an authentication
CVE-2021-40866 (Certain NETGEAR smart switches are affected by a remote admin
password ...)
NOT-FOR-US: Netgear
CVE-2021-3799 (grav-plugin-admin is vulnerable to Improper Restriction of
Rendered UI ...)
- TODO: check
+ NOT-FOR-US: Grav CMS
CVE-2021-41054 (tftpd_file.c in atftp through 0.7.4 has a buffer overflow
because buff ...)
- atftp 0.7.git20210915-1 (bug #994895)
[bullseye] - atftp <no-dsa> (Minor issue; can be fixed via point
release)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/74ac4a13d8502e2d7c067c9fc57ca212aa31555d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/74ac4a13d8502e2d7c067c9fc57ca212aa31555d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
