[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Apr 16 09:45:16 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
63640297 by Salvatore Bonaccorso at 2019-04-16T08:44:55Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -33574,11 +33574,11 @@ CVE-2018-18020 (In QPDF 8.2.1, in libqpdf/QPDFWriter.cc, QPDFWriter::unparseObje
 CVE-2018-1000806
 	REJECTED
 CVE-2018-18019 (XSS exists in the Tribulant Slideshow Gallery plugin 1.6.8 for WordPre ...)
-	TODO: check
+	NOT-FOR-US: Tribulant Slideshow Gallery plugin for WordPress
 CVE-2018-18018 (SQL Injection exists in the Tribulant Slideshow Gallery plugin 1.6.8 f ...)
-	TODO: check
+	NOT-FOR-US: Tribulant Slideshow Gallery plugin for WordPress
 CVE-2018-18017 (XSS exists in the Tribulant Slideshow Gallery plugin 1.6.8 for WordPre ...)
-	TODO: check
+	NOT-FOR-US: Tribulant Slideshow Gallery plugin for WordPress
 CVE-2018-18016 (ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage  ...)
 	- imagemagick 8:6.9.10.14+dfsg-1 (unimportant)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/1049
@@ -36139,9 +36139,9 @@ CVE-2018-16969 (Citrix ShareFile StorageZones Controller before 5.4.2 has Inform
 CVE-2018-16968 (Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory ...)
 	NOT-FOR-US: Citrix ShareFile StorageZones Controller
 CVE-2018-16967 (There is an XSS vulnerability in the mndpsingh287 File Manager plugin  ...)
-	TODO: check
+	NOT-FOR-US: mndpsingh287 File Manager plugin for WordPress
 CVE-2018-16966 (There is a CSRF vulnerability in the mndpsingh287 File Manager plugin  ...)
-	TODO: check
+	NOT-FOR-US: mndpsingh287 File Manager plugin for WordPress
 CVE-2018-16965 (In Zoho ManageEngine SupportCenter Plus before 8.1 Build 8109, there i ...)
 	NOT-FOR-US: Zoho
 CVE-2018-16964



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/63640297db314047358d8d33e193e3133cb2997c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/63640297db314047358d8d33e193e3133cb2997c
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190416/50fed3b2/attachment.html>

More information about the debian-security-tracker-commits mailing list