[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Dec 26 08:19:16 GMT 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6b383ca7 by Salvatore Bonaccorso at 2019-12-26T08:18:46Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2019-20002
 CVE-2019-20001
 	RESERVED
 CVE-2019-20000 (The malware scan function in BullGuard Premium Protection 20.0.371.8 h ...)
-	TODO: check
+	NOT-FOR-US: BullGuard Premium Protection
 CVE-2019-19999 (Halo before 1.2.0-beta.1 allows Server Side Template Injection (SSTI)  ...)
 	TODO: check
 CVE-2019-19998 (Xiuno BBS 4.0 allows XXE via plugin/xn_wechat_public/route/token.php. ...)
@@ -35,19 +35,19 @@ CVE-2019-19987
 CVE-2019-19986
 	RESERVED
 CVE-2019-19985 (The WordPress plugin, Email Subscribers & Newsletters, before 4.2. ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-19984 (The WordPress plugin, Email Subscribers & Newsletters, before 4.2. ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-19983 (In the WordPress plugin, Fast Velocity Minify before 2.7.7, the full w ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-19982 (The WordPress plugin, Email Subscribers & Newsletters, before 4.2. ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-19981 (The WordPress plugin, Email Subscribers & Newsletters, before 4.2. ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-19980 (The WordPress plugin, Email Subscribers & Newsletters, before 4.2. ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-19979 (A flaw in the WordPress plugin, WP Maintenance before 5.0.6, allowed a ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-19978
 	RESERVED
 CVE-2019-19976
@@ -69,7 +69,7 @@ CVE-2019-19969
 CVE-2019-19968
 	RESERVED
 CVE-2019-19967 (The Administration page on Connect Box EuroDOCSIS 3.0 Voice Gateway CH ...)
-	TODO: check
+	NOT-FOR-US: Connect Box EuroDOCSIS 3.0 Voice Gateway devices
 CVE-2019-19977 (libESMTP through 1.0.6 mishandles domain copying into a fixed-size buf ...)
 	- libesmtp <unfixed> (unimportant)
 	NOTE: https://github.com/Kirin-say/Vulnerabilities/blob/master/Stack_Overflow_in_libesmtp.md



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6b383ca766819eaa97b59d9f5ddbf74eb490bb2b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6b383ca766819eaa97b59d9f5ddbf74eb490bb2b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191226/2459c2fb/attachment.html>

More information about the debian-security-tracker-commits mailing list