[Git][security-tracker-team/security-tracker][master] Process some NFUs

Fri, 11 Mar 2022 05:34:27 -0800 


Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
086d0a79 by Neil Williams at 2022-03-11T13:33:49+00:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -54344,7 +54344,7 @@ CVE-2021-3533 (A flaw was found in Ansible if an 
ansible user sets ANSIBLE_ASYNC
 CVE-2021-32026
        RESERVED
 CVE-2021-32025 (An elevation of privilege vulnerability in the QNX Neutrino 
Kernel of  ...)
-       TODO: check
+       NOT-FOR-US: QNX
 CVE-2021-32024 (A remote code execution vulnerability in the BMP image codec 
of BlackB ...)
        NOT-FOR-US: BlackBerry
 CVE-2021-32023 (An elevation of privilege vulnerability in the message broker 
of Black ...)
@@ -54400,9 +54400,9 @@ CVE-2021-32008 (This issue affects: Secomea GateManager 
Version 9.6.621421014 an
 CVE-2021-32007
        RESERVED
 CVE-2021-32006 (This issue affects: Secomea GateManager Version 9.6.621421014 
and all  ...)
-       TODO: check
+       NOT-FOR-US: Secomea GateManager
 CVE-2021-32005 (Cross-site Scripting (XSS) vulnerability in log view of 
Secomea SiteMa ...)
-       TODO: check
+       NOT-FOR-US: Secomea SiteManager
 CVE-2021-32004 (This issue affects: Secomea GateManager All versions prior to 
9.6. Imp ...)
        NOT-FOR-US: Secomea GateManager
 CVE-2021-32003 (Unprotected Transport of Credentials vulnerability in 
SiteManager prov ...)
@@ -63752,7 +63752,7 @@ CVE-2021-28490 (In OWASP CSRFGuard through 3.1.0, CSRF 
can occur because the CSR
 CVE-2021-28489
        RESERVED
 CVE-2021-28488 (Ericsson Network Manager 20.2 has Insecure Permissions. ...)
-       TODO: check
+       NOT-FOR-US: Ericsson
 CVE-2021-28487
        RESERVED
 CVE-2021-28486
@@ -77503,7 +77503,7 @@ CVE-2021-22785 (A CWE-200: Information Exposure 
vulnerability exists that could
 CVE-2021-22784 (A CWE-306: Missing Authentication for Critical Function 
vulnerability  ...)
        NOT-FOR-US: Schneider Electric
 CVE-2021-22783 (A CWE-200: Information Exposure vulnerability exists which 
could allow ...)
-       TODO: check
+       NOT-FOR-US: Schneider Electric
 CVE-2021-22782 (Missing Encryption of Sensitive Data vulnerability exists in 
EcoStruxu ...)
        NOT-FOR-US: Schneider Electric
 CVE-2021-22781 (Insufficiently Protected Credentials vulnerability exists in 
EcoStruxu ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/086d0a7941d7810f26dcbc6f0dc6da957c6b0014

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/086d0a7941d7810f26dcbc6f0dc6da957c6b0014
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to