[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Dec 13 20:26:36 GMT 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4686aa88 by Salvatore Bonaccorso at 2019-12-13T20:26:05Z
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2019-19793 (In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2 on Wind ...)
-	TODO: check
+	NOT-FOR-US: Cyxtera AppGate SDP Client
 CVE-2019-19792
 	RESERVED
 CVE-2019-19791
@@ -43,7 +43,7 @@ CVE-2019-19776
 CVE-2019-19775
 	RESERVED
 CVE-2019-19774 (An issue was discovered in Zoho ManageEngine EventLog Analyzer 10.0 SP ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine EventLog Analyzer
 CVE-2019-19773
 	RESERVED
 CVE-2019-19772
@@ -4181,7 +4181,7 @@ CVE-2019-19503
 CVE-2019-19502 (pluginconfig.php in the Image Uploader and Browser plugin before 4.1.9 ...)
 	NOT-FOR-US: ckeditor plugin
 CVE-2019-19501 (VeraCrypt 1.24 allows Local Privilege Escalation during execution of V ...)
-	TODO: check
+	NOT-FOR-US: VeraCrypt
 CVE-2019-19500
 	RESERVED
 CVE-2019-19499
@@ -4617,7 +4617,7 @@ CVE-2019-19399
 CVE-2019-19398
 	RESERVED
 CVE-2019-19397 (There is a weak algorithm vulnerability in some Huawei products. The a ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2019-19396 (illumos, as used in OmniOS Community Edition before r151030y, allows a ...)
 	NOT-FOR-US: illumos
 CVE-2019-19395
@@ -13686,7 +13686,7 @@ CVE-2019-17125
 CVE-2019-17124 (Kramer VIAware 2.5.0719.1034 has Incorrect Access Control. ...)
 	NOT-FOR-US: Kramer VIAware
 CVE-2019-17123 (The eGain Web Email API 11+ allows spoofed messages because the fromNa ...)
-	TODO: check
+	NOT-FOR-US: eGain Web Email API
 CVE-2019-17122
 	RESERVED
 CVE-2019-17121 (REDCap before 9.3.4 has XSS on the Customize & Manage Locking/E-si ...)
@@ -26010,7 +26010,7 @@ CVE-2019-13349 (In Knowage through 6.1.1, an authenticated user that accesses th
 CVE-2019-13348 (In Knowage through 6.1.1, an authenticated user who accesses the datas ...)
 	NOT-FOR-US: Knowage
 CVE-2019-13347 (An issue was discovered in the SAML Single Sign On (SSO) plugin for se ...)
-	TODO: check
+	NOT-FOR-US: SAML Single Sign On plugin for several Atlassian products
 CVE-2019-13346 (In MyT 1.5.1, the User[username] parameter has XSS. ...)
 	NOT-FOR-US: MyT
 CVE-2019-13345 (The cachemgr.cgi web module of Squid through 4.7 has XSS via the user_ ...)
@@ -48769,9 +48769,9 @@ CVE-2019-5293 (Some Huawei products have a memory leak vulnerability when handli
 CVE-2019-5292 (Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the versions bef ...)
 	NOT-FOR-US: Huawei
 CVE-2019-5291 (Some Huawei products have an insufficient verification of data authent ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2019-5290 (Huawei S5700 and S6700 have a DoS security vulnerability. Attackers wi ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2019-5289 (Gauss100 OLTP database in ManageOne with versions of 6.5.0 have an out ...)
 	NOT-FOR-US: Huawei
 CVE-2019-5288 (P30 smart phones with versions earlier than ELLE-AL00B 9.1.0.193(C00E1 ...)
@@ -48849,9 +48849,9 @@ CVE-2019-5253
 CVE-2019-5252
 	RESERVED
 CVE-2019-5251 (There is a path traversal vulnerability in several Huawei smartphones. ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2019-5250 (Mate 20 Pro smartphones with versions earlier than 9.1.0.135(C00E133R3 ...)
-	TODO: check
+	NOT-FOR-US: Mate 20 Pro smartphones
 CVE-2019-5249
 	RESERVED
 CVE-2019-5248 (CloudEngine 12800 has a DoS vulnerability. An attacker of a neighborin ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4686aa884f44153741ccecb740b47c500cef978d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4686aa884f44153741ccecb740b47c500cef978d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191213/4b62bb77/attachment.html>

More information about the debian-security-tracker-commits mailing list