[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Nov 30 21:32:26 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ca75fa5c by Salvatore Bonaccorso at 2018-11-30T21:32:00Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3262,7 +3262,7 @@ CVE-2018-19529
 CVE-2018-19528 (TP-Link TL-WR886N 7.0 1.1.0 devices allow remote attackers to cause a ...)
 	NOT-FOR-US: TP-Link
 CVE-2018-19527 (i4 assistant 7.85 allows XSS via a crafted machine name field within ...)
-	TODO: check
+	NOT-FOR-US: i4 assistant
 CVE-2018-19526
 	RESERVED
 CVE-2018-19525
@@ -3867,7 +3867,7 @@ CVE-2018-19292
 CVE-2018-19291 (An issue discovered in DiliCMS 2.4.0. There is a CSRF vulnerability ...)
 	NOT-FOR-US: DiliCMS
 CVE-2018-19290 (In modules/HELPBOT_MODULE in Budabot 0.6 through 4.0, lax syntax ...)
-	TODO: check
+	NOT-FOR-US: Budabot
 CVE-2018-19289 (An issue was discovered in Valine v1.3.3. It allows HTML injection, ...)
 	NOT-FOR-US: Valine
 CVE-2018-19288 (Zoho ManageEngine OpManager 12.3 before Build 123223 has XSS via the ...)
@@ -4900,7 +4900,7 @@ CVE-2018-18989
 CVE-2018-18988
 	RESERVED
 CVE-2018-18987 (VT-Designer Version 2.1.7.31 is vulnerable by the program populating ...)
-	TODO: check
+	NOT-FOR-US: VT-Designer
 CVE-2018-18986
 	RESERVED
 CVE-2018-18985
@@ -4908,7 +4908,7 @@ CVE-2018-18985
 CVE-2018-18984
 	RESERVED
 CVE-2018-18983 (VT-Designer Version 2.1.7.31 is vulnerable by the program reading the ...)
-	TODO: check
+	NOT-FOR-US: VT-Designer
 CVE-2018-18982 (NUUO CMS All versions 3.3 and prior the web server application allows ...)
 	NOT-FOR-US: NUUO CMS
 CVE-2018-18981
@@ -5183,7 +5183,7 @@ CVE-2018-18862
 CVE-2018-18861 (Buffer overflow in PCMan FTP Server 2.0.7 allows for remote code ...)
 	NOT-FOR-US: PCMan FTP Server
 CVE-2018-18860 (A local privilege escalation vulnerability has been identified in the ...)
-	TODO: check
+	NOT-FOR-US: SwitchVPN for macOS
 CVE-2018-18859 (Multiple local privilege escalation vulnerabilities have been ...)
 	NOT-FOR-US: LiquidVPN client for macOS
 CVE-2018-18858 (Multiple local privilege escalation vulnerabilities have been ...)
@@ -13001,9 +13001,9 @@ CVE-2018-15770
 CVE-2018-15769 (RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x ...)
 	NOT-FOR-US: RSA BSAFE Micro Edition Suite
 CVE-2018-15768 (Dell OpenManage Network Manager versions prior to 6.5.0 enabled ...)
-	TODO: check
+	NOT-FOR-US: Dell OpenManage Network Manager
 CVE-2018-15767 (The Dell OpenManage Network Manager virtual appliance versions prior ...)
-	TODO: check
+	NOT-FOR-US: Dell OpenManage Network Manager
 CVE-2018-15766 (On install, Dell Encryption versions prior 10.0.1 and Dell Endpoint ...)
 	NOT-FOR-US: Dell
 CVE-2018-15765 (Dell EMC Secure Remote Services, versions prior to 3.32.00.08, ...)
@@ -33622,9 +33622,9 @@ CVE-2018-7809 (An Unverified Password Change vulnerability exists in the embedde
 CVE-2018-7808
 	RESERVED
 CVE-2018-7807 (Data Center Expert, versions 7.5.0 and earlier, allows for the upload ...)
-	TODO: check
+	NOT-FOR-US: Data Center Expert
 CVE-2018-7806 (Data Center Operation allows for the upload of a zip file from its ...)
-	TODO: check
+	NOT-FOR-US: Data Center Operation
 CVE-2018-7805
 	RESERVED
 CVE-2018-7804
@@ -45167,7 +45167,7 @@ CVE-2018-3950
 CVE-2018-3949
 	RESERVED
 CVE-2018-3948 (An exploitable denial-of-service vulnerability exists in the ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2018-3947 (An exploitable information disclosure vulnerability exists in the ...)
 	NOT-FOR-US: Yi Home Camera
 CVE-2018-3946 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
@@ -51110,9 +51110,9 @@ CVE-2018-1930
 CVE-2018-1929
 	RESERVED
 CVE-2018-1928 (IBM StoredIQ 7.6.0 does not implement proper authorization of user ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1927 (IBM StoredIQ 7.6 is vulnerable to cross-site request forgery which ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1926
 	RESERVED
 CVE-2018-1925
@@ -51172,7 +51172,7 @@ CVE-2018-1899
 CVE-2018-1898
 	RESERVED
 CVE-2018-1897 (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5., and 11.1 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1896
 	RESERVED
 CVE-2018-1895



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca75fa5cea276d75e713887872e12029fd194529

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca75fa5cea276d75e713887872e12029fd194529
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181130/48f87d36/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list