diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2021-11-14 09:30:16 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-11-14 09:30:16 +0100 |
commit | eb324fd30307bce183e03506e45a271b04f04a5e (patch) | |
tree | cf90fe4d43283f1d259a38f63d2b0f2b50ca6986 | |
parent | 25883dff0c717aa93531dc4d19c2a13736ce475e (diff) |
Process NFUs
-rw-r--r-- | data/CVE/list.2021 | 22 |
1 files changed, 11 insertions, 11 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 531eb4d8be..137db2bd79 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -125,7 +125,7 @@ CVE-2021-3947 [NVME: Arbitrary Memory Read] CVE-2021-3946 RESERVED CVE-2021-3945 (django-helpdesk is vulnerable to Improper Neutralization of Input Duri ...) - TODO: check + NOT-FOR-US: django-helpdesk CVE-2021-3944 RESERVED CVE-2021-3943 @@ -502,7 +502,7 @@ CVE-2021-43411 (An issue was discovered in GNU Hurd before 0.9 20210404-9. When CVE-2021-43410 RESERVED CVE-2021-3932 (twill is vulnerable to Cross-Site Request Forgery (CSRF) ...) - TODO: check + NOT-FOR-US: twill CVE-2021-43409 RESERVED CVE-2021-43408 @@ -5447,7 +5447,7 @@ CVE-2021-41256 CVE-2021-41255 RESERVED CVE-2021-41254 (kustomize-controller is a Kubernetes operator, specialized in running ...) - TODO: check + NOT-FOR-US: kustomize-controller CVE-2021-41253 (Zydis is an x86/x86-64 disassembler library. Users of Zydis versions v ...) - zydis <unfixed> (bug #999431) NOTE: https://github.com/zyantific/zydis/security/advisories/GHSA-q42v-hv86-3m4g @@ -9611,7 +9611,7 @@ CVE-2021-39476 CVE-2021-39475 RESERVED CVE-2021-39474 (Vulnerability in the product Docsis 3.0 UBC1319BA00 Router supported a ...) - TODO: check + NOT-FOR-US: Docsis UBC1319BA00 Router CVE-2021-39473 RESERVED CVE-2021-39472 @@ -20015,7 +20015,7 @@ CVE-2021-3610 [heap-based buffer overflow in ReadTIFFImage() in coders/tiff.c] - imagemagick <not-affected> (Specific to Imagemagick 7) NOTE: https://github.com/ImageMagick/ImageMagick/commit/930ff0d1a9bc42925a7856e9ea53f5fc9f318bf3 CVE-2021-35053 (Possible system denial of service in case of arbitrary changing Firefo ...) - TODO: check + NOT-FOR-US: Kaspersky CVE-2021-35052 RESERVED CVE-2021-35051 @@ -22866,7 +22866,7 @@ CVE-2021-33802 CVE-2021-33801 RESERVED CVE-2021-33800 (In Druid 1.2.3, visiting the path with parameter in a certain function ...) - TODO: check + NOT-FOR-US: Alibaba Druid CVE-2021-33799 RESERVED CVE-2021-33798 @@ -42147,7 +42147,7 @@ CVE-2021-25982 CVE-2021-25981 RESERVED CVE-2021-25980 (In Talkyard, versions v0.04.01 through v0.6.74-WIP-63220cb, v0.2020.22 ...) - TODO: check + NOT-FOR-US: Talkyard CVE-2021-25979 (Apostrophe CMS versions between 2.63.0 to 3.3.1 affected by an insuffi ...) NOT-FOR-US: Apostrophe CMS CVE-2021-25978 (Apostrophe CMS versions between 2.63.0 to 3.3.1 are vulnerable to Stor ...) @@ -47309,7 +47309,7 @@ CVE-2021-23786 CVE-2021-23785 RESERVED CVE-2021-23784 (This affects the package tempura before 0.4.0. If the input to the esc ...) - TODO: check + NOT-FOR-US: tempura CVE-2021-23783 RESERVED CVE-2021-23782 @@ -47629,7 +47629,7 @@ CVE-2021-23626 CVE-2021-23625 RESERVED CVE-2021-23624 (This affects the package dotty before 0.1.2. A type confusion vulnerab ...) - TODO: check + NOT-FOR-US: Node dotty CVE-2021-23623 RESERVED CVE-2021-23622 @@ -47859,7 +47859,7 @@ CVE-2021-23511 CVE-2021-23510 RESERVED CVE-2021-23509 (This affects the package json-ptr before 3.0.0. A type confusion vulne ...) - TODO: check + NOT-FOR-US: Node json-ptr CVE-2021-23508 RESERVED CVE-2021-23507 @@ -49341,7 +49341,7 @@ CVE-2021-22872 (Revive Adserver before 5.1.0 is vulnerable to a reflected cross- CVE-2021-22871 (Revive Adserver before 5.1.0 permits any user with a manager account t ...) NOT-FOR-US: Revive Adserver CVE-2021-22870 (A path traversal vulnerability was identified in GitHub Pages builds o ...) - TODO: check + NOT-FOR-US: GitHub Enterprise Server CVE-2021-22869 (An improper access control vulnerability in GitHub Enterprise Server a ...) NOT-FOR-US: GitHub Enterprise Server CVE-2021-22868 (A path traversal vulnerability was identified in GitHub Enterprise Ser ...) |