[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Dec 26 08:26:38 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5c3cc88e by Salvatore Bonaccorso at 2018-12-26T08:26:08Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
 CVE-2018-20481 (XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef ...)
 	TODO: check
 CVE-2018-20480 (An issue was discovered in S-CMS 1.0. It allows SQL Injection via the ...)
-	TODO: check
+	NOT-FOR-US: S-CMS
 CVE-2018-20479 (An issue was discovered in S-CMS 1.0. It allows SQL Injection via the ...)
-	TODO: check
+	NOT-FOR-US: S-CMS
 CVE-2018-20478 (An issue was discovered in S-CMS 1.0. It allows reading certain files, ...)
-	TODO: check
+	NOT-FOR-US: S-CMS
 CVE-2018-20477 (An issue was discovered in S-CMS 3.0. It allows SQL Injection via the ...)
-	TODO: check
+	NOT-FOR-US: S-CMS
 CVE-2018-20476 (An issue was discovered in S-CMS 3.0. It allows XSS via the ...)
-	TODO: check
+	NOT-FOR-US: S-CMS
 CVE-2018-20475
 	RESERVED
 CVE-2018-20474
@@ -31,13 +31,13 @@ CVE-2018-20467 (In coders/bmp.c in ImageMagick before 7.0.8-16, an input file ca
 CVE-2018-20466
 	RESERVED
 CVE-2018-20465 (Craft CMS through 3.0.34 allows remote authenticated administrators to ...)
-	TODO: check
+	NOT-FOR-US: Craft CMS
 CVE-2018-20464 (There is a reflected XSS vulnerability in the CMS Made Simple 2.2.8 ...)
-	TODO: check
+	NOT-FOR-US: CMS Made Simple
 CVE-2018-20463 (An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. ...)
-	TODO: check
+	NOT-FOR-US: JSmol2WP plugin for WordPress
 CVE-2018-20462 (An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. A ...)
-	TODO: check
+	NOT-FOR-US: JSmol2WP plugin for WordPress
 CVE-2018-20461 (In radare2 prior to 3.1.1, core_anal_bytes in libr/core/cmd_anal.c ...)
 	- radare2 3.1.2+dfsg-1
 	NOTE: https://github.com/radare/radare2/commit/a1bc65c3db593530775823d6d7506a457ed95267



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c3cc88eeb2ec95815337920fb80a27bc1bc9db1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c3cc88eeb2ec95815337920fb80a27bc1bc9db1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181226/fc8798a7/attachment.html>

More information about the debian-security-tracker-commits mailing list