[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
carnil at debian.org
Tue Apr 9 17:11:07 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5ca4e434 by Salvatore Bonaccorso at 2019-04-09T16:10:23Z
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23,7 +23,7 @@ CVE-2019-11018 (application\admin\controller\User.php in ThinkAdmin V4.0 does no
CVE-2019-11017
RESERVED
CVE-2019-11016 (Elgg before 1.12.18 and 2.3.x before 2.3.11 has an open redirect. ...)
- TODO: check
+ NOT-FOR-US: Elgg
CVE-2019-11015
RESERVED
CVE-2019-11014 (The VStarCam vstc.vscam.client library and vstc.vscam shared object, a ...)
@@ -993,15 +993,15 @@ CVE-2019-10636
CVE-2019-10635
RESERVED
CVE-2019-10634 (An XSS vulnerability in the Zyxel NAS 326 version 5.21 and below allow ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-10633 (An eval injection vulnerability in the Python web server routing on th ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-10632 (A directory traversal vulnerability in the file browser component on t ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-10631 (Shell Metacharacter Injection in the package installer on Zyxel NAS 32 ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-10630 (A plaintext password vulnerability in the Zyxel NAS 326 through 5.21 a ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-10629
RESERVED
CVE-2019-10628
@@ -27127,7 +27127,7 @@ CVE-2019-0823
CVE-2019-0822
RESERVED
CVE-2019-0821 (An information disclosure vulnerability exists in the way that the Win ...)
- TODO: check
+ NOT-FOR-US: Windows SMB Server
CVE-2019-0820
RESERVED
CVE-2019-0819
@@ -27156,9 +27156,9 @@ CVE-2019-0811
CVE-2019-0810
RESERVED
CVE-2019-0809 (A remote code execution vulnerability exists when the Visual Studio C+ ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0808 (An elevation of privilege vulnerability exists in Windows when the Win ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0807
RESERVED
CVE-2019-0806
@@ -27179,9 +27179,9 @@ CVE-2019-0800
CVE-2019-0799
RESERVED
CVE-2019-0798 (A spoofing vulnerability exists when a Lync Server or Skype for Busine ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0797 (An elevation of privilege vulnerability exists in Windows when the Win ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0796
RESERVED
CVE-2019-0795
@@ -27207,57 +27207,57 @@ CVE-2019-0786
CVE-2019-0785
RESERVED
CVE-2019-0784 (A remote code execution vulnerability exists in the way that the Activ ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0783 (A remote code execution vulnerability exists in the way that the scrip ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0782 (An information disclosure vulnerability exists when the Windows kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0781
RESERVED
CVE-2019-0780 (A remote code execution vulnerability exists in the way that Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0779 (A remote code execution vulnerability exists when Microsoft Edge impro ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0778 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0777 (A Cross-site Scripting (XSS) vulnerability exists when Team Foundation ...)
TODO: check
CVE-2019-0776 (An information disclosure vulnerability exists when the win32k compone ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0775 (An information disclosure vulnerability exists when the Windows kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0774 (An information disclosure vulnerability exists when the Windows GDI co ...)
TODO: check
CVE-2019-0773 (A remote code execution vulnerability exists in the way that the scrip ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0772 (A remote code execution vulnerability exists in the way that the VBScr ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0771 (A remote code execution vulnerability exists in the way that the scrip ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0770 (A remote code execution vulnerability exists in the way that the scrip ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0769 (A remote code execution vulnerability exists in the way that the scrip ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0768 (A security feature bypass vulnerability exists when Internet Explorer ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0767 (An information disclosure vulnerability exists when the Windows kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0766 (An elevation of privilege vulnerability exists in Windows AppX Deploym ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0765 (A remote code execution vulnerability exists in the way that comctl32. ...)
TODO: check
CVE-2019-0764
RESERVED
CVE-2019-0763 (A remote code execution vulnerability exists when Internet Explorer im ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0762 (A security feature bypass vulnerability exists when Microsoft browsers ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0761 (A security feature bypass vulnerability exists when Internet Explorer ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0760
RESERVED
CVE-2019-0759 (An information disclosure vulnerability exists when the Windows Print ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0758
RESERVED
CVE-2019-0757 (A tampering vulnerability exists in the NuGet Package Manager for Linu ...)
@@ -27267,11 +27267,11 @@ CVE-2019-0757 (A tampering vulnerability exists in the NuGet Package Manager for
NOTE: https://github.com/NuGet/NuGet.Client/commit/d62db666c710bf95121fe8f5c6a6cbe01985456f?w=1
NOTE: https://github.com/NuGet/Home/issues/7673#issuecomment-478738369
CVE-2019-0756 (A remote code execution vulnerability exists when the Microsoft XML Co ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0755 (An information disclosure vulnerability exists when the Windows kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0754 (A denial of service vulnerability exists when Windows improperly handl ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0753
RESERVED
CVE-2019-0752
@@ -27283,11 +27283,11 @@ CVE-2019-0750
CVE-2019-0749
RESERVED
CVE-2019-0748 (A remote code execution vulnerability exists when the Microsoft Office ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0747
RESERVED
CVE-2019-0746 (An information disclosure vulnerability exists when the scripting engi ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0745
RESERVED
CVE-2019-0744
@@ -27371,13 +27371,13 @@ CVE-2019-0706
CVE-2019-0705
RESERVED
CVE-2019-0704 (An information disclosure vulnerability exists in the way that the Win ...)
- TODO: check
+ NOT-FOR-US: Windows SMB Server
CVE-2019-0703 (An information disclosure vulnerability exists in the way that the Win ...)
- TODO: check
+ NOT-FOR-US: Windows SMB Server
CVE-2019-0702 (An information disclosure vulnerability exists when the Windows kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0701 (A denial of service vulnerability exists when Microsoft Hyper-V on a h ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0700
RESERVED
CVE-2019-0699
@@ -27387,9 +27387,9 @@ CVE-2019-0698 (A memory corruption vulnerability exists in the Windows DHCP clie
CVE-2019-0697 (A memory corruption vulnerability exists in the Windows DHCP client wh ...)
TODO: check
CVE-2019-0696 (An elevation of privilege vulnerability exists when the Windows kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0695 (A denial of service vulnerability exists when Microsoft Hyper-V on a h ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0694 (An elevation of privilege vulnerability exists due to an integer overf ...)
TODO: check
CVE-2019-0693 (An elevation of privilege vulnerability exists due to an integer overf ...)
@@ -27399,7 +27399,7 @@ CVE-2019-0692 (An elevation of privilege vulnerability exists due to an integer
CVE-2019-0691
RESERVED
CVE-2019-0690 (A denial of service vulnerability exists when Microsoft Hyper-V Networ ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0689 (An elevation of privilege vulnerability exists due to an integer overf ...)
TODO: check
CVE-2019-0688
@@ -27413,13 +27413,13 @@ CVE-2019-0685
CVE-2019-0684
RESERVED
CVE-2019-0683 (An elevation of privilege vulnerability exists in Active Directory For ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0682 (An elevation of privilege vulnerability exists due to an integer overf ...)
TODO: check
CVE-2019-0681
RESERVED
CVE-2019-0680 (A remote code execution vulnerability exists in the way that the scrip ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0679
RESERVED
CVE-2019-0678 (An elevation of privilege vulnerability exists when Microsoft Edge doe ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5ca4e4345604608458c5bbc3419860a1889c46b6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5ca4e4345604608458c5bbc3419860a1889c46b6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190409/0284e8e0/attachment.html>
More information about the debian-security-tracker-commits
mailing list