Neil Williams pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b7d0ead5 by Neil Williams at 2022-02-18T13:57:30+00:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6204,7 +6204,7 @@ CVE-2022-0267
CVE-2021-46399
RESERVED
CVE-2021-46398 (A Cross-Site Request Forgery vulnerability exists in
Filebrowser < ...)
- TODO: check
+ NOT-FOR-US: FileBrowser
CVE-2021-46397
RESERVED
CVE-2021-46396
@@ -6258,7 +6258,7 @@ CVE-2021-46373
CVE-2021-46372
RESERVED
CVE-2021-46371 (antd-admin 5.5.0 is affected by an incorrect access control
vulnerabil ...)
- TODO: check
+ NOT-FOR-US: antd-admin
CVE-2021-46370
RESERVED
CVE-2021-46369
@@ -6402,7 +6402,7 @@ CVE-2021-46321 (Tenda AC Series Router
AC11_V02.03.01.104_CN was discovered to c
CVE-2021-46320 (In OpenZeppelin <=v4.4.0, initializer functions that are
invoked se ...)
NOT-FOR-US: OpenZeppelin
CVE-2021-46319 (Remote Code Execution (RCE) vulnerability exists in D-Link
Router DIR- ...)
- TODO: check
+ NOT-FOR-US: Dlink DIR-846 Router
CVE-2021-46318
RESERVED
CVE-2021-46317
@@ -7890,11 +7890,11 @@ CVE-2021-46254
CVE-2021-46253 (A cross-site scripting (XSS) vulnerability in the Create Post
function ...)
NOT-FOR-US: Anchor CMS
CVE-2021-46252 (A Cross-Site Request Forgery (CSRF) in
RequirementsBypassPage.php of S ...)
- TODO: check
+ NOT-FOR-US: scratch-confirmaccount-v3
CVE-2021-46251 (A reflected cross-site scripting (XSS) in ScratchOAuth2 before
commit ...)
- TODO: check
+ NOT-FOR-US: ScratchOAuth2
CVE-2021-46250 (An issue in SOA2Login::commented of ScratchOAuth2 before
commit a91879 ...)
- TODO: check
+ NOT-FOR-US: ScratchOAuth2
CVE-2021-46249 (An authorization bypass exploited by a user-controlled key in
Specific ...)
TODO: check
CVE-2021-46248
@@ -26406,7 +26406,7 @@ CVE-2021-41601
CVE-2021-41600
RESERVED
CVE-2021-41599 (A remote code execution vulnerability was identified in GitHub
Enterpr ...)
- TODO: check
+ NOT-FOR-US: GitHub Enterprise Server
CVE-2021-41598 (A UI misrepresentation vulnerability was identified in GitHub
Enterpri ...)
NOT-FOR-US: GitHub Enterprise Server
CVE-2021-41597 (SuiteCRM through 7.11.21 is vulnerable to CSRF, with resultant
remote ...)
@@ -71162,7 +71162,7 @@ CVE-2021-23684
CVE-2021-23683
RESERVED
CVE-2021-23682 (This affects the package litespeed.js before 0.3.12; the
package appwr ...)
- TODO: check
+ NOT-FOR-US: litespeed.js
CVE-2021-23681
RESERVED
CVE-2021-23680
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7d0ead527342403662ed908ce785941b837123b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7d0ead527342403662ed908ce785941b837123b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
