[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Wed Dec 18 15:33:01 GMT 2019 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
07e1705b by Moritz Muehlenhoff at 2019-12-18T15:32:36Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13881,13 +13881,13 @@ CVE-2019-17339
 CVE-2019-17338
 	RESERVED
 CVE-2019-17337 (The Spotfire library component of TIBCO Software Inc.'s TIBCO Spotfire ...)
-	TODO: check
+	NOT-FOR-US: TIBCO
 CVE-2019-17336 (The Data access layer component of TIBCO Software Inc.'s TIBCO Spotfir ...)
-	TODO: check
+	NOT-FOR-US: TIBCO
 CVE-2019-17335 (The Data access layer component of TIBCO Software Inc.'s TIBCO Spotfir ...)
-	TODO: check
+	NOT-FOR-US: TIBCO
 CVE-2019-17334 (The Visualizations component of TIBCO Software Inc.'s TIBCO Spotfire A ...)
-	TODO: check
+	NOT-FOR-US: TIBCO
 CVE-2019-17333
 	RESERVED
 CVE-2019-17332 (The Digital Asset Manager Web Interface component of TIBCO Software In ...)
@@ -20525,7 +20525,7 @@ CVE-2019-15015 (In the Zingbox Inspector, versions 1.294 and earlier, hardcoded
 CVE-2019-15014 (A command injection vulnerability exists in the Zingbox Inspector vers ...)
 	NOT-FOR-US: Zingbox Inspector
 CVE-2019-15013 (The WorkflowResource class removeStatus method in Jira before version  ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2019-15012
 	RESERVED
 CVE-2019-15011 (The ListEntityLinksServlet resource in Application Links before versio ...)
@@ -21910,7 +21910,7 @@ CVE-2019-14570 (Memory corruption in system firmware for Intel(R) NUC may allow
 CVE-2019-14569 (Pointer corruption in system firmware for Intel(R) NUC may allow a pri ...)
 	NOT-FOR-US: Intel
 CVE-2019-14568 (Improper permissions in the executable for Intel(R) RST before version ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2019-14567
 	RESERVED
 CVE-2019-14566 (Insufficient input validation in Intel(R) SGX SDK multiple Linux and W ...)
@@ -32823,7 +32823,7 @@ CVE-2019-11167 (Improper file permission in software installer for Intel(R) Smar
 CVE-2019-11166 (Improper file permissions in the installer for Intel(R) Easy Streaming ...)
 	NOT-FOR-US: Intel
 CVE-2019-11165 (Improper conditions check in the Linux kernel driver for the Intel(R)  ...)
-	TODO: check
+	NOT-FOR-US: Intel, driver doesn't seem to be upstreamed
 CVE-2019-11164
 	RESERVED
 CVE-2019-11163 (Insufficient access control in a hardware abstraction driver for Intel ...)
@@ -34400,7 +34400,7 @@ CVE-2019-10616
 CVE-2019-10615
 	RESERVED
 CVE-2019-10614 (Out of boundary access is possible as there is no validation of data a ...)
-	TODO: check
+	NOT-FOR-US: Snapdragon
 CVE-2019-10613
 	RESERVED
 CVE-2019-10612



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/07e1705b89db4b68da2978f4639c1bf5c20970de

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/07e1705b89db4b68da2978f4639c1bf5c20970de
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191218/3f48a798/attachment.html>

More information about the debian-security-tracker-commits mailing list