[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Nov 29 21:11:24 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
92759f44 by Salvatore Bonaccorso at 2018-11-29T21:10:44Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,9 +7,9 @@ CVE-2018-19695
 CVE-2018-19694
 	RESERVED
 CVE-2018-19693 (An issue was discovered in tp5cms through 2017-05-25. ...)
-	TODO: check
+	NOT-FOR-US: tp5cms
 CVE-2018-19692 (An issue was discovered in tp5cms through 2017-05-25. ...)
-	TODO: check
+	NOT-FOR-US: tp5cms
 CVE-2018-19691
 	RESERVED
 CVE-2018-19690
@@ -21854,7 +21854,7 @@ CVE-2018-12247 (An issue was discovered in mruby 1.4.1. There is a NULL pointer
 CVE-2018-12246 (Symantec Web Isolation (WI) 1.11 prior to 1.11.21 is susceptible to a ...)
 	NOT-FOR-US: Symantec
 CVE-2018-12245 (Symantec Endpoint Protection prior to 14.2 MP1 may be susceptible to a ...)
-	TODO: check
+	NOT-FOR-US: Symantec Endpoint Protection
 CVE-2018-12244
 	RESERVED
 CVE-2018-12243 (The Symantec Messaging Gateway product prior to 10.6.6 may be ...)
@@ -21866,9 +21866,9 @@ CVE-2018-12241 (The Symantec Security Analytics (SA) 7.x prior to 7.3.4 Web UI i
 CVE-2018-12240 (The Norton Identity Safe product prior to 5.3.0.976 may be susceptible ...)
 	NOT-FOR-US: Norton
 CVE-2018-12239 (Norton prior to 22.15; Symantec Endpoint Protection (SEP) prior to ...)
-	TODO: check
+	NOT-FOR-US: Norton
 CVE-2018-12238 (Norton prior to 22.15; Symantec Endpoint Protection (SEP) prior to ...)
-	TODO: check
+	NOT-FOR-US: Norton
 CVE-2018-12237
 	RESERVED
 CVE-2018-12236
@@ -39826,11 +39826,11 @@ CVE-2018-5920
 CVE-2018-5919 (In all android releases(Android for MSM, Firefox OS for MSM, QRD ...)
 	TODO: check
 CVE-2018-5918 (Possible buffer overflow in DRM Trusted application due to lack of ...)
-	TODO: check
+	NOT-FOR-US: Snapdragon
 CVE-2018-5917 (Possible buffer overflow in OEM crypto function due to improper input ...)
-	TODO: check
+	NOT-FOR-US: Snapdragon
 CVE-2018-5916 (Buffer overread while decoding PDP modify request or network initiated ...)
-	TODO: check
+	NOT-FOR-US: Snapdragon
 CVE-2018-5915
 	RESERVED
 CVE-2018-5914 (Improper input validation in TZ led to array out of bound in TZ ...)
@@ -39838,7 +39838,7 @@ CVE-2018-5914 (Improper input validation in TZ led to array out of bound in TZ .
 CVE-2018-5913
 	RESERVED
 CVE-2018-5912 (Potential buffer overflow in Video due to lack of input validation in ...)
-	TODO: check
+	NOT-FOR-US: Snapdragon
 CVE-2018-5911
 	RESERVED
 CVE-2018-5910 (In all android releases(Android for MSM, Firefox OS for MSM, QRD ...)
@@ -39908,7 +39908,7 @@ CVE-2018-5879
 CVE-2018-5878 (While sending the response to a RIL_REQUEST_GET_SMSC_ADDRESS message, ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5877 (In the device programmer target-side code for firehose, a string may ...)
-	TODO: check
+	NOT-FOR-US: Snapdragon
 CVE-2018-5876 (While parsing an mp4 file, a buffer overflow can occur in Snapdragon ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5875 (While parsing an mp4 file, an integer overflow leading to a buffer ...)
@@ -39925,7 +39925,7 @@ CVE-2018-5872 (While parsing over-the-air information elements in all Android ..
 CVE-2018-5871 (In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5870 (While loading a service image, an untrusted pointer dereference can ...)
-	TODO: check
+	NOT-FOR-US: Snapdragon
 CVE-2018-5869
 	RESERVED
 CVE-2018-5868



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/92759f44507bc5452cda0164f1c5c905d3f44979

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/92759f44507bc5452cda0164f1c5c905d3f44979
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181129/fc8fad61/attachment.html>

More information about the debian-security-tracker-commits mailing list