Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0798b5f8 by Salvatore Bonaccorso at 2022-01-07T10:50:23+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6263,7 +6263,7 @@ CVE-2021-44566
CVE-2021-44565
RESERVED
CVE-2021-44564 (A security vulnerability originally reported in the SYNC2101
product, ...)
- TODO: check
+ NOT-FOR-US: SYNC2101
CVE-2021-44563
RESERVED
CVE-2021-44562
@@ -12849,7 +12849,7 @@ CVE-2021-42843
CVE-2021-42842
RESERVED
CVE-2021-42841 (Insta HMS before 12.4.10 is vulnerable to XSS because of
improper vali ...)
- TODO: check
+ NOT-FOR-US: Insta HMS
CVE-2021-42840 (SuiteCRM before 7.11.19 allows remote code execution via the
system se ...)
NOT-FOR-US: SuiteCRM
CVE-2021-42839 (Grand Vice info Co. webopac7 file upload function fails to
filter spec ...)
@@ -20981,51 +20981,51 @@ CVE-2021-39990 (The screen lock module has a
Stack-based Buffer Overflow vulnera
CVE-2021-39989 (The HwNearbyMain module has a Exposure of Sensitive
Information to an ...)
TODO: check
CVE-2021-39988 (The HwNearbyMain module has a NULL Pointer Dereference
vulnerability.S ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39987 (The HwNearbyMain module has a Data Processing Errors
vulnerability.Suc ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39986
RESERVED
CVE-2021-39985 (The HwNearbyMain module has a Improper Validation of Array
Index vulne ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39984 (Huawei idap module has a Out-of-bounds Read
vulnerability.Successful e ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39983 (The HwNearbyMain module has a Data Processing Errors
vulnerability.Suc ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39982 (Phone Manager application has a Improper Privilege Management
vulnerab ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39981 (Chang Lian application has a vulnerability which can be
maliciously ex ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39980 (Telephony application has a Exposure of Sensitive Information
to an Un ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39979 (HHEE system has a Code Injection vulnerability.Successful
exploitation ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39978 (Telephony application has a SQL Injection
vulnerability.Successful exp ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39977 (The HwNearbyMain module has a NULL Pointer Dereference
vulnerability.S ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39976 (There is a privilege escalation vulnerability in CloudEngine
5800 V200 ...)
NOT-FOR-US: Huawei
CVE-2021-39975 (Hilinksvc has a Data Processing Errors
vulnerability.Successful exploi ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39974 (There is an Out-of-bounds read in Smartphones.Successful
exploitation ...)
NOT-FOR-US: Huawei
CVE-2021-39973 (There is a Null pointer dereference in Smartphones.Successful
exploita ...)
NOT-FOR-US: Huawei
CVE-2021-39972 (MyHuawei-App has a Exposure of Sensitive Information to an
Unauthorize ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39971 (Password vault has a External Control of System or
Configuration Setti ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39970 (HwPCAssistant has a Improper Input Validation
vulnerability.Successful ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39969 (There is an Unauthorized file access vulnerability in
Smartphones.Succ ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39968 (Changlian Blocklist has a Business Logic Errors vulnerability
.Success ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39967 (There is a Vulnerability of obtaining broadcast information
improperly ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39966 (There is an Uninitialized AOD driver structure in
Smartphones.Successf ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-39965
RESERVED
CVE-2021-39964
@@ -24117,7 +24117,7 @@ CVE-2021-38676
CVE-2021-38675 (A cross-site scripting (XSS) vulnerability has been reported
to affect ...)
NOT-FOR-US: QNAP
CVE-2021-38674 (A cross-site scripting (XSS) vulnerability has been reported
to affect ...)
- TODO: check
+ NOT-FOR-US: QNAP
CVE-2021-3706 (adminlte is vulnerable to Sensitive Cookie Without 'HttpOnly'
Flag ...)
NOT-FOR-US: adminlte
CVE-2021-38673
@@ -28013,7 +28013,7 @@ CVE-2021-37136 (The Bzip2 decompression decoder
function doesn't allow setting s
CVE-2021-37135
RESERVED
CVE-2021-37134 (Location-related APIs exists a Race Condition
vulnerability.Successful ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2021-37133 (There is an Unauthorized file access vulnerability in
Smartphones.Succ ...)
NOT-FOR-US: Huawei
CVE-2021-37132 (PackageManagerService has a Permissions, Privileges, and
Access Contro ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0798b5f8a830f87447e106682437e9cfcb944606
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0798b5f8a830f87447e106682437e9cfcb944606
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
