[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Dec 30 09:09:25 GMT 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ae1acdf6 by Salvatore Bonaccorso at 2019-12-30T09:08:32Z
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21,13 +21,13 @@ CVE-2019-20091 (An issue was discovered in Bento4 1.5.1.0. There is a NULL point
 CVE-2019-20090 (An issue was discovered in Bento4 1.5.1.0. There is a use-after-free i ...)
 	NOT-FOR-US: Bento4
 CVE-2019-20089 (GoPro GPMF-parser 1.2.3 has an heap-based buffer over-read in GPMF_See ...)
-	TODO: check
+	NOT-FOR-US: gpmf-parser
 CVE-2019-20088 (GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GetPayloa ...)
-	TODO: check
+	NOT-FOR-US: gpmf-parser
 CVE-2019-20087 (GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GPMF_seek ...)
-	TODO: check
+	NOT-FOR-US: gpmf-parser
 CVE-2019-20086 (GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GPMF_Next ...)
-	TODO: check
+	NOT-FOR-US: gpmf-parser
 CVE-2019-20085 (TVT NVMS-1000 devices allow GET /.. Directory Traversal ...)
 	NOT-FOR-US: TVT NVMS-1000 devices
 CVE-2019-20084



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ae1acdf663fee060e7fe3388beb3ebae02ae7812

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ae1acdf663fee060e7fe3388beb3ebae02ae7812
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191230/69d275fb/attachment.html>


More information about the debian-security-tracker-commits mailing list