[Git][security-tracker-team/security-tracker][master] 2 commits: Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Apr 2 14:47:32 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cc7f6b23 by Salvatore Bonaccorso at 2019-04-02T13:45:48Z
Process NFUs

- - - - -
050a3d80 by Salvatore Bonaccorso at 2019-04-02T13:47:14Z
Merge remote-tracking branch 'origin/master'

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13233,9 +13233,9 @@ CVE-2019-5521
 CVE-2019-5520
 	RESERVED
 CVE-2019-5519 (VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-20190300 ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2019-5518 (VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-20190300 ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2019-5517
 	RESERVED
 CVE-2019-5516
@@ -13243,7 +13243,7 @@ CVE-2019-5516
 CVE-2019-5515
 	RESERVED
 CVE-2019-5514 (VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerab ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2019-5513
 	RESERVED
 CVE-2019-5512
@@ -17610,7 +17610,7 @@ CVE-2019-3491
 CVE-2019-3490
 	RESERVED
 CVE-2019-3489 (An unauthenticated file upload vulnerability has been identified in th ...)
-	TODO: check
+	NOT-FOR-US: Micro Focus Content Manager
 CVE-2019-3488
 	RESERVED
 CVE-2019-3487
@@ -29012,7 +29012,7 @@ CVE-2018-19115 (keepalived before 2.0.7 has a heap-based buffer overflow when pa
 CVE-2018-19114 (An issue was discovered in MinDoc through v1.0.2. It allows attackers  ...)
 	NOT-FOR-US: MinDoc
 CVE-2018-19113 (The Pronestor PNHM (aka Health Monitoring or HealthMonitor) add-in bef ...)
-	TODO: check
+	NOT-FOR-US: Pronestor PNHM
 CVE-2018-19112
 	RESERVED
 CVE-2018-19111 (The Google Cardboard application 1.8 for Android and 1.2 for iOS sends ...)
@@ -32032,9 +32032,9 @@ CVE-2018-17992
 CVE-2018-17991
 	RESERVED
 CVE-2018-17990 (An issue was discovered on D-Link DSL-3782 devices with firmware 1.01. ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2018-17989 (A stored XSS vulnerability exists in the web interface on D-Link DSL-3 ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2018-17988 (LayerBB 1.1.1 has SQL Injection via the search.php search_query parame ...)
 	NOT-FOR-US: LayerBB
 CVE-2018-17987 (The determineWinner function of a smart contract implementation for Ha ...)
@@ -33041,11 +33041,11 @@ CVE-2018-17567 (Jekyll through 3.6.2, 3.7.x through 3.7.3, and 3.8.x through 3.8
 CVE-2018-17566 (In ThinkPHP 5.1.24, the inner function delete can be used for SQL inje ...)
 	NOT-FOR-US: ThinkPHP
 CVE-2018-17565 (Shell Metacharacter Injection in the SSH configuration interface on Gr ...)
-	TODO: check
+	NOT-FOR-US: Grandstream GXP16xx VoIP phones
 CVE-2018-17564 (A Malformed Input String to /cgi-bin/delete_CA on Grandstream GXP16xx  ...)
-	TODO: check
+	NOT-FOR-US: Grandstream GXP16xx VoIP phones
 CVE-2018-17563 (A Malformed Input String to /cgi-bin/api-get_line_status on Grandstrea ...)
-	TODO: check
+	NOT-FOR-US: Grandstream GXP16xx VoIP phones
 CVE-2018-17562 (Multi-Tech FaxFinder before 5.1.6 has SQL Injection via a status/call_ ...)
 	NOT-FOR-US: Multi-Tech FaxFinder
 CVE-2018-17561
@@ -109674,7 +109674,7 @@ CVE-2017-8025 (RSA Archer GRC Platform prior to 6.2.0.5 is affected by an arbitr
 CVE-2017-8024 (EMC Isilon OneFS (versions prior to 8.1.0.1, versions prior to 8.0.1.2 ...)
 	NOT-FOR-US: EMC
 CVE-2017-8023 (EMC NetWorker may potentially be vulnerable to an unauthenticated remo ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2017-8022 (An issue was discovered in EMC NetWorker (prior to 8.2.4.9, all suppor ...)
 	NOT-FOR-US: EMC
 CVE-2017-8021 (EMC Elastic Cloud Storage (ECS) before 3.1 is affected by an undocumen ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/c88e4259dcbf01acda42d025c2e3ab118b4ff1a0...050a3d80e3724d29848e3450858fdc3b8b62fe62

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/c88e4259dcbf01acda42d025c2e3ab118b4ff1a0...050a3d80e3724d29848e3450858fdc3b8b62fe62
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190402/15538ccf/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list