[Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed Apr 10 21:23:45 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
594c1972 by Salvatore Bonaccorso at 2019-04-10T20:23:16Z
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -271,9 +271,9 @@ CVE-2019-10948
CVE-2019-10947
RESERVED
CVE-2019-10946 (An issue was discovered in Joomla! before 3.9.5. The "refresh list of ...)
- TODO: check
+ NOT-FOR-US: Joomla!
CVE-2019-10945 (An issue was discovered in Joomla! before 3.9.5. The Media Manager com ...)
- TODO: check
+ NOT-FOR-US: Joomla!
CVE-2019-10944
RESERVED
CVE-2019-10943
@@ -9123,7 +9123,7 @@ CVE-2019-7553
CVE-2019-7552
RESERVED
CVE-2019-7551 (Cantemo Portal before 3.2.13, 3.3.x before 3.3.8, and 3.4.x before 3.4 ...)
- TODO: check
+ NOT-FOR-US: Cantemo Portal
CVE-2019-7550 (In JForum 2.1.8, an unauthenticated, remote attacker can enumerate whe ...)
NOT-FOR-US: JForum
CVE-2019-7549
@@ -10271,7 +10271,7 @@ CVE-2019-7141
CVE-2019-7140
RESERVED
CVE-2019-7139 (An unauthenticated user can execute arbitrary code through an SQL inje ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2019-7138
RESERVED
CVE-2019-7137
@@ -12320,7 +12320,7 @@ CVE-2019-6289 (uploads/include/dialog/select_soft.php in DedeCMS V57_UTF8_SP2 al
CVE-2019-6288
RESERVED
CVE-2019-6287 (In Rancher 2.0.0 through 2.1.5, project members have continued access ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2019-6286 (In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelex ...)
- libsass <unfixed> (low)
[stretch] - libsass <no-dsa> (Minor issue)
@@ -14465,11 +14465,11 @@ CVE-2019-5428
CVE-2019-5427
RESERVED
CVE-2019-5426 (In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated ...)
- TODO: check
+ NOT-FOR-US: Ubiquiti
CVE-2019-5425 (In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an authenticated u ...)
- TODO: check
+ NOT-FOR-US: Ubiquiti
CVE-2019-5424 (In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, a privileged user ...)
- TODO: check
+ NOT-FOR-US: Ubiquiti
CVE-2019-5423 (Path traversal vulnerability in http-live-simulator npm package versio ...)
NOT-FOR-US: http-live-simulator node module
CVE-2019-5422 (XSS in buttle npm package version 0.2.0 causes execution of attacker-p ...)
@@ -19800,7 +19800,7 @@ CVE-2018-20323 (www/soap/application/MCSoap/Logs.php in MailCleaner Community Ed
CVE-2018-20322 (LimeSurvey version 3.15.5 contains a Cross-site scripting (XSS) vulner ...)
- limesurvey <itp> (bug #472802)
CVE-2018-20321 (An issue was discovered in Rancher 2 through 2.1.5. Any project member ...)
- TODO: check
+ NOT-FOR-US: Rancher
CVE-2018-20320
RESERVED
CVE-2018-20319
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/594c1972b738ad7d1bf2b9746427ac724be4f04c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/594c1972b738ad7d1bf2b9746427ac724be4f04c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190410/ac70e7c3/attachment.html>
More information about the debian-security-tracker-commits
mailing list