[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed, 30 Mar 2022 06:24:40 -0700 


Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
0749ebb5 by Neil Williams at 2022-03-30T14:24:07+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18854,9 +18854,9 @@ CVE-2021-45868 (In the Linux kernel before 5.15.3, 
fs/quota/quota_tree.c does no
 CVE-2021-45867
        RESERVED
 CVE-2021-45866 (A Stored Cross Site Scripting (XSS) vulnerability exists in 
Sourcecode ...)
-       TODO: check
+       NOT-FOR-US: Sourcecodester Student Attendance Management System
 CVE-2021-45865 (A File Upload vulnerability exists in Sourcecodester Student 
Attendanc ...)
-       TODO: check
+       NOT-FOR-US: Sourcecodester Student Attendance Management System
 CVE-2021-45864 (tsMuxer git-c6a0277 was discovered to contain a segmentation 
fault via ...)
        NOT-FOR-US: tsMuxer
 CVE-2021-45863 (tsMuxer git-2678966 was discovered to contain a heap-based 
buffer over ...)
@@ -23276,7 +23276,7 @@ CVE-2021-44583
 CVE-2021-44582
        RESERVED
 CVE-2021-44581 (An SQL Injection vulnerabilty exists in Kreado Kreasfero 1.5 
via the i ...)
-       TODO: check
+       NOT-FOR-US: Kreado Kreasfero CMS
 CVE-2021-44580
        RESERVED
 CVE-2021-44579
@@ -24843,9 +24843,9 @@ CVE-2021-44084
 CVE-2021-44083
        RESERVED
 CVE-2021-44082 (textpattern 4.8.7 is vulnerable to Cross Site Scripting (XSS) 
via /tex ...)
-       TODO: check
+       NOT-FOR-US: Textpattern CMS
 CVE-2021-44081 (A buffer overflow vulnerability exists in the AMF of open5gs 
2.1.4. Wh ...)
-       TODO: check
+       NOT-FOR-US: Open5GS
 CVE-2021-44080
        RESERVED
 CVE-2021-4001 (A race condition was found in the Linux kernel's ebpf verifier 
between ...)
@@ -27064,7 +27064,7 @@ CVE-2021-43703 (An Incorrect Access Control 
vulnerability exists in zzcms less t
 CVE-2021-43702
        RESERVED
 CVE-2021-43701 (CSZ CMS 1.2.9 has a Time and Boolean-based Blind SQL Injection 
vulnera ...)
-       TODO: check
+       NOT-FOR-US: CSZ CMS
 CVE-2021-43700 (An issue was discovered in ApiManager 1.1. there is sql 
injection vuln ...)
        NOT-FOR-US: ApiManager
 CVE-2021-43699
@@ -29640,7 +29640,7 @@ CVE-2021-43120
 CVE-2021-43119
        RESERVED
 CVE-2021-43118 (A Remote Command Injection vulnerability exists in DrayTek 
Vigor 2960  ...)
-       TODO: check
+       NOT-FOR-US: DrayTek Vigor2960 devices
 CVE-2021-43117 (fastadmin v1.2.1 is affected by a file upload vulnerability 
which allo ...)
        NOT-FOR-US: fastadmin
 CVE-2021-43116
@@ -29667,7 +29667,7 @@ CVE-2021-43107
 CVE-2021-43106 (A Header Injection vulnerability exists in Compass Plus 
TranzWare Onli ...)
        NOT-FOR-US: Compass Plus TranzWare
 CVE-2021-43105 (A vulnerability in the bailiwick checking function in 
Technitium DNS S ...)
-       TODO: check
+       NOT-FOR-US: Technitium DNS Server
 CVE-2021-43104
        RESERVED
 CVE-2021-43103 (A File Upload vulnerability exists in bbs 5.3 is via 
ForumManageAction ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0749ebb5cfa2b04786ce17ab9cbd042774c8f560

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0749ebb5cfa2b04786ce17ab9cbd042774c8f560
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to