[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed Dec 4 08:51:24 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cf83a381 by Salvatore Bonaccorso at 2019-12-04T08:50:33Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -805,7 +805,7 @@ CVE-2019-19384 (A cross-site scripting (XSS) vulnerability in app/fax/fax_log_vi
CVE-2019-19383 (freeFTPd 1.0.8 has a Post-Authentication Buffer Overflow via a crafted ...)
TODO: check
CVE-2019-19382 (Max Secure Anti Virus Plus 19.0.4.020 has Insecure Permissions on the ...)
- TODO: check
+ NOT-FOR-US: Max Secure Anti Virus Plus
CVE-2019-19381
RESERVED
CVE-2019-19380
@@ -1967,9 +1967,9 @@ CVE-2019-18995
CVE-2019-18994
RESERVED
CVE-2019-18993 (OpenWrt 18.06.4 allows XSS via the "New port forward" Name field to th ...)
- TODO: check
+ NOT-FOR-US: OpenWrt
CVE-2019-18992 (OpenWrt 18.06.4 allows XSS via these Name fields to the cgi-bin/luci/a ...)
- TODO: check
+ NOT-FOR-US: OpenWrt
CVE-2019-18991
RESERVED
CVE-2019-18990
@@ -5131,7 +5131,7 @@ CVE-2019-18576
CVE-2019-18575
RESERVED
CVE-2019-18574 (RSA Authentication Manager software versions prior to 8.4 P8 contain a ...)
- TODO: check
+ NOT-FOR-US: RSA Authentication Manager software
CVE-2019-18573
RESERVED
CVE-2019-18572
@@ -10377,7 +10377,7 @@ CVE-2019-16887 (In IrfanView 4.53, Data from a Faulting Address controls a subse
CVE-2019-16886
RESERVED
CVE-2019-16885 (In OkayCMS through 2.3.4, an unauthenticated attacker can achieve remo ...)
- TODO: check
+ NOT-FOR-US: OkayCMS
CVE-2019-16884 (runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other ...)
- runc 1.0.0~rc9+dfsg1-1 (bug #942026)
- golang-github-opencontainers-selinux <unfixed> (bug #942027)
@@ -48248,9 +48248,9 @@ CVE-2019-3752
CVE-2019-3751 (Dell EMC Enterprise Copy Data Management (eCDM) versions 1.0, 1.1, 2.0 ...)
NOT-FOR-US: EMC
CVE-2019-3750 (Dell Command Update versions prior to 3.1 contain an Arbitrary File De ...)
- TODO: check
+ NOT-FOR-US: Dell Command Update
CVE-2019-3749 (Dell Command Update versions prior to 3.1 contain an Arbitrary File De ...)
- TODO: check
+ NOT-FOR-US: Dell Command Update
CVE-2019-3748
RESERVED
CVE-2019-3747 (Dell EMC Integrated Data Protection Appliance versions prior to 2.3 co ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cf83a3816301f5bb58457c47b5f2f844ead992d0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cf83a3816301f5bb58457c47b5f2f844ead992d0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191204/9ef80231/attachment.html>
More information about the debian-security-tracker-commits
mailing list