[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0b740cce by Salvatore Bonaccorso at 2018-12-16T20:25:34Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11,15 +11,15 @@ CVE-2018-20163
 CVE-2018-20162
 	RESERVED
 CVE-2018-20161 (A design flaw in the BlinkForHome (aka Blink For Home) Sync Module ...)
-	TODO: check
+	NOT-FOR-US: BlinkForHome (aka Blink For Home) Sync Module
 CVE-2018-20160
 	RESERVED
 CVE-2018-20159 (i-doit open 1.11.2 allows Remote Code Execution because ZIP archives ...)
-	TODO: check
+	NOT-FOR-US: i-doit
 CVE-2018-20158
 	RESERVED
 CVE-2018-20157 (The data import functionality in OpenRefine through 3.1 allows an XML ...)
-	TODO: check
+	NOT-FOR-US: OpenRefine
 CVE-2018-20156 (The WP Maintenance Mode plugin before 2.0.7 for WordPress allows remote ...)
 	NOT-FOR-US: WordPress plugin wp-maintenance-mode
 CVE-2018-20155 (The WP Maintenance Mode plugin before 2.0.7 for WordPress allows remote ...)
@@ -2064,7 +2064,7 @@ CVE-2018-20140
 CVE-2018-20139
 	RESERVED
 CVE-2018-20138 (PHP Scripts Mall Entrepreneur B2B Script 3.0.6 allows Stored XSS via ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Entrepreneur B2B Script
 CVE-2018-20137 (XSS exists in FUEL CMS 1.4.3 via the Page title, Meta description, or ...)
 	NOT-FOR-US: FUEL CMS
 CVE-2018-20136 (XSS exists in FUEL CMS 1.4.3 via the Header or Body in the Layout ...)
@@ -2167,7 +2167,7 @@ CVE-2018-20096 (There is a heap-based buffer over-read in the Exiv2::tEXtToDataB
 CVE-2018-20095 (An issue was discovered in EnsureCapacity in Core/Ap4Array.h in Bento4 ...)
 	NOT-FOR-US: Bento4
 CVE-2018-20094 (An issue was discovered in XXL-CONF 1.6.0. There is a path traversal ...)
-	TODO: check
+	NOT-FOR-US: XXL-CONF
 CVE-2018-20093
 	RESERVED
 CVE-2018-20092
@@ -3233,7 +3233,7 @@ CVE-2018-19993
 CVE-2018-19992
 	RESERVED
 CVE-2018-19991 (VeryNginx 0.3.3 allows remote attackers to bypass the Web Application ...)
-	TODO: check
+	NOT-FOR-US: VeryNginx
 CVE-2018-19990
 	RESERVED
 CVE-2018-19989



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b740ccee71eaf29695d1d36b55940a956e19da4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b740ccee71eaf29695d1d36b55940a956e19da4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181216/e517b7a1/attachment.html>