[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed, 13 Apr 2022 02:41:53 -0700 


Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
64918cea by Neil Williams at 2022-04-13T10:41:14+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -38218,7 +38218,7 @@ CVE-2021-41247 (JupyterHub is an open source multi-user 
server for Jupyter noteb
 CVE-2021-41246 (Express OpenID Connect is express JS middleware implementing 
sign on f ...)
        NOT-FOR-US: Express OpenID Connect
 CVE-2021-41245 (Combodo iTop is a web based IT Service Management tool. In 
versions pr ...)
-       TODO: check
+       NOT-FOR-US: Combodo iTop
 CVE-2021-41244 (Grafana is an open-source platform for monitoring and 
observability. I ...)
        - grafana <removed>
 CVE-2021-41243 (There is a Potential Zip Slip Vulnerability and OS Command 
Injection V ...)
@@ -38820,7 +38820,7 @@ CVE-2021-41028 (A combination of a use of hard-coded 
cryptographic key vulnerabi
 CVE-2021-41027 (A stack-based buffer overflow in Fortinet FortiWeb version 
6.4.1 and 6 ...)
        NOT-FOR-US: FortiGuard
 CVE-2021-41026 (A relative path traversal in FortiWeb versions 6.4.1, 6.4.0, 
and 6.3.0 ...)
-       TODO: check
+       NOT-FOR-US: FortiGuard FortiWeb
 CVE-2021-41025 (Multiple vulnerabilities in the authentication mechanism of 
confd in F ...)
        NOT-FOR-US: FortiGuard
 CVE-2021-41024 (A relative path traversal [CWE-23] vulnerabiltiy in FortiOS 
versions 7 ...)
@@ -38862,9 +38862,9 @@ CVE-2021-41007
 CVE-2021-41006
        RESERVED
 CVE-2021-41005 (A remote vulnerability was discovered in Aruba Instant On 1930 
Switch  ...)
-       TODO: check
+       NOT-FOR-US: Aruba Instant On
 CVE-2021-41004 (A remote vulnerability was discovered in Aruba Instant On 1930 
Switch  ...)
-       TODO: check
+       NOT-FOR-US: Aruba Instant On
 CVE-2021-41003 (Multiple unauthenticated command injection vulnerabilities 
were discov ...)
        NOT-FOR-US: Aruba
 CVE-2021-41002 (Multiple authenticated remote path traversal vulnerabilities 
were disc ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64918ceaf925d5f4a3663f330f55959adab11bbf

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64918ceaf925d5f4a3663f330f55959adab11bbf
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to