[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed Dec 26 20:16:28 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
857ab33c by Salvatore Bonaccorso at 2018-12-26T20:16:06Z
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
CVE-2018-20486 (MetInfo 6.x through 6.1.3 has XSS via the /admin/login/login_check.php ...)
- TODO: check
+ NOT-FOR-US: MetInfo
CVE-2018-20485 (Zoho ManageEngine ADSelfService Plus 5.7 before build 5702 has XSS in ...)
- TODO: check
+ NOT-FOR-US: Zoho ManageEngine ADSelfService Plus
CVE-2018-20484 (Zoho ManageEngine ADSelfService Plus 5.7 before build 5702 has XSS in ...)
- TODO: check
+ NOT-FOR-US: Zoho ManageEngine ADSelfService Plus
CVE-2018-20483 (set_file_metadata in xattr.c in GNU Wget through 1.20 stores a file's ...)
TODO: check
CVE-2018-20482 (GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage ...)
@@ -13383,7 +13383,7 @@ CVE-2018-17958 (Qemu has a Buffer Overflow in rtl8139_do_receive in hw/net/rtl81
NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=1a326646fef38782e5542280040ec3ea23e4a730
NOTE: https://www.openwall.com/lists/oss-security/2018/10/08/1
CVE-2018-17957 (The YaST2 RMT module for configuring the SUSE Repository Mirroring ...)
- TODO: check
+ NOT-FOR-US: YaST2 RMT module
CVE-2018-17956
RESERVED
CVE-2018-17955
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/857ab33c28633f1d99367d74b569325103dacfec
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/857ab33c28633f1d99367d74b569325103dacfec
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181226/a197f785/attachment.html>
More information about the debian-security-tracker-commits
mailing list