[Git][security-tracker-team/security-tracker][master] Mark some issues for envoy proxy as NFU

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1ead41b2 by Salvatore Bonaccorso at 2019-12-11T06:30:47Z
Mark some issues for envoy proxy as NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3809,6 +3809,7 @@ CVE-2019-18839 (FUDForum 3.0.9 is vulnerable to Stored XSS via the nlogin parame
 	NOT-FOR-US: FUDForum
 CVE-2019-18838
 	RESERVED
+	NOT-FOR-US: envoy proxy (not the same as itp'ed envoy, #758651)
 CVE-2019-18837 (An issue was discovered in crun before 0.10.5. With a crafted image, i ...)
 	- crun <not-affected> (Fixed in initial upload)
 CVE-2019-18836 (Envoy 1.12.0 allows a remote denial of service because of resource loo ...)
@@ -3918,8 +3919,10 @@ CVE-2019-18803
 	RESERVED
 CVE-2019-18802
 	RESERVED
+	NOT-FOR-US: envoy proxy (not the same as itp'ed envoy, #758651)
 CVE-2019-18801
 	RESERVED
+	NOT-FOR-US: envoy proxy (not the same as itp'ed envoy, #758651)
 CVE-2019-18800 (Viber through 11.7.0.5 allows a remote attacker who can capture a vict ...)
 	NOT-FOR-US: Viber
 CVE-2019-18799 (LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1ead41b28181f039af66144db4be30344f300326

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1ead41b28181f039af66144db4be30344f300326
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191211/ffd7c4fe/attachment.html>