[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Dec 4 08:51:24 GMT 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cf83a381 by Salvatore Bonaccorso at 2019-12-04T08:50:33Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -805,7 +805,7 @@ CVE-2019-19384 (A cross-site scripting (XSS) vulnerability in app/fax/fax_log_vi
 CVE-2019-19383 (freeFTPd 1.0.8 has a Post-Authentication Buffer Overflow via a crafted ...)
 	TODO: check
 CVE-2019-19382 (Max Secure Anti Virus Plus 19.0.4.020 has Insecure Permissions on the  ...)
-	TODO: check
+	NOT-FOR-US: Max Secure Anti Virus Plus
 CVE-2019-19381
 	RESERVED
 CVE-2019-19380
@@ -1967,9 +1967,9 @@ CVE-2019-18995
 CVE-2019-18994
 	RESERVED
 CVE-2019-18993 (OpenWrt 18.06.4 allows XSS via the "New port forward" Name field to th ...)
-	TODO: check
+	NOT-FOR-US: OpenWrt
 CVE-2019-18992 (OpenWrt 18.06.4 allows XSS via these Name fields to the cgi-bin/luci/a ...)
-	TODO: check
+	NOT-FOR-US: OpenWrt
 CVE-2019-18991
 	RESERVED
 CVE-2019-18990
@@ -5131,7 +5131,7 @@ CVE-2019-18576
 CVE-2019-18575
 	RESERVED
 CVE-2019-18574 (RSA Authentication Manager software versions prior to 8.4 P8 contain a ...)
-	TODO: check
+	NOT-FOR-US: RSA Authentication Manager software
 CVE-2019-18573
 	RESERVED
 CVE-2019-18572
@@ -10377,7 +10377,7 @@ CVE-2019-16887 (In IrfanView 4.53, Data from a Faulting Address controls a subse
 CVE-2019-16886
 	RESERVED
 CVE-2019-16885 (In OkayCMS through 2.3.4, an unauthenticated attacker can achieve remo ...)
-	TODO: check
+	NOT-FOR-US: OkayCMS
 CVE-2019-16884 (runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other ...)
 	- runc 1.0.0~rc9+dfsg1-1 (bug #942026)
 	- golang-github-opencontainers-selinux <unfixed> (bug #942027)
@@ -48248,9 +48248,9 @@ CVE-2019-3752
 CVE-2019-3751 (Dell EMC Enterprise Copy Data Management (eCDM) versions 1.0, 1.1, 2.0 ...)
 	NOT-FOR-US: EMC
 CVE-2019-3750 (Dell Command Update versions prior to 3.1 contain an Arbitrary File De ...)
-	TODO: check
+	NOT-FOR-US: Dell Command Update
 CVE-2019-3749 (Dell Command Update versions prior to 3.1 contain an Arbitrary File De ...)
-	TODO: check
+	NOT-FOR-US: Dell Command Update
 CVE-2019-3748
 	RESERVED
 CVE-2019-3747 (Dell EMC Integrated Data Protection Appliance versions prior to 2.3 co ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cf83a3816301f5bb58457c47b5f2f844ead992d0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cf83a3816301f5bb58457c47b5f2f844ead992d0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191204/9ef80231/attachment.html>


More information about the debian-security-tracker-commits mailing list