[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Apr 18 21:55:29 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3061b12b by Salvatore Bonaccorso at 2019-04-18T20:54:39Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2019-11322 (An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a c ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2019-11321 (An issue was discovered in Motorola CX2 1.01 and M2 1.01. The router o ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2019-11320 (In Motorola CX2 1.01 and M2 1.01, users can access the router's /priv_ ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2019-11319 (An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a c ...)
-	TODO: check
+	NOT-FOR-US: Motorola
 CVE-2019-11318
 	RESERVED
 CVE-2019-11317
@@ -211,7 +211,7 @@ CVE-2019-11225
 CVE-2019-11224
 	RESERVED
 CVE-2019-11223 (An Unrestricted File Upload Vulnerability in the SupportCandy plugin t ...)
-	TODO: check
+	NOT-FOR-US: SupportCandy plugin for WordPress
 CVE-2017-18366 (Subrion CMS 4.1.5 has CSRF in blog/delete/. ...)
 	NOT-FOR-US: Subrion CMS
 CVE-2019-11222 (gf_bin128_parse in utils/os_divers.c in GPAC 0.7.1 has a buffer overfl ...)
@@ -501,7 +501,7 @@ CVE-2019-11086
 CVE-2019-11085
 	RESERVED
 CVE-2019-11084 (GAuth 0.9.9 beta has stored XSS that shows a popup repeatedly and disc ...)
-	TODO: check
+	NOT-FOR-US: GAuth
 CVE-2019-11083
 	RESERVED
 CVE-2019-11082
@@ -684,7 +684,7 @@ CVE-2019-11019
 CVE-2019-11018 (application\admin\controller\User.php in ThinkAdmin V4.0 does not prev ...)
 	NOT-FOR-US: ThinkAdmin
 CVE-2019-11017 (On D-Link DI-524 V2.06RU devices, multiple Stored and Reflected XSS vu ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2019-11016 (Elgg before 1.12.18 and 2.3.x before 2.3.11 has an open redirect. ...)
 	NOT-FOR-US: Elgg
 CVE-2019-11015
@@ -6442,7 +6442,7 @@ CVE-2019-9007
 CVE-2019-9006
 	RESERVED
 CVE-2019-9005 (The Cprime Power Scripts app before 4.0.14 for Atlassian Jira allows D ...)
-	TODO: check
+	NOT-FOR-US: Cprime Power Scripts app for Atlassian Jira
 CVE-2019-9004 (In Eclipse Wakaama (formerly liblwm2m) 1.0, core/er-coap-13/er-coap-13 ...)
 	NOT-FOR-US: Eclipse Wakaama
 CVE-2019-9003 (In the Linux kernel before 4.20.5, attackers can trigger a drivers/cha ...)
@@ -35620,11 +35620,11 @@ CVE-2018-17291
 CVE-2018-17290
 	RESERVED
 CVE-2018-17289 (An XML external entity (XXE) vulnerability in Kofax Front Office Serve ...)
-	TODO: check
+	NOT-FOR-US: Kofax Front Office Server Administration Console
 CVE-2018-17288 (Kofax Front Office Server version 4.1.1.11.0.5212 (both Thin Client an ...)
-	TODO: check
+	NOT-FOR-US: Kofax Front Office Server
 CVE-2018-17287 (In Kofax Front Office Server Administration Console 4.1.1.11.0.5212, s ...)
-	TODO: check
+	NOT-FOR-US: Kofax Front Office Server Administration Console
 CVE-2018-17286
 	RESERVED
 CVE-2018-17285



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3061b12bff8395c476e78a8dd1e8fd6132314204

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3061b12bff8395c476e78a8dd1e8fd6132314204
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190418/6d4a44bf/attachment.html>

More information about the debian-security-tracker-commits mailing list