[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
carnil at debian.org
Mon Dec 30 20:17:39 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1cd5e028 by Salvatore Bonaccorso at 2019-12-30T20:16:47Z
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2393,7 +2393,7 @@ CVE-2019-20143
CVE-2019-20142
RESERVED
CVE-2019-20141 (An XSS issue was discovered in the Laborator Neon theme 2.0 for WordPr ...)
- TODO: check
+ NOT-FOR-US: Laborator Neon theme for WordPress
CVE-2019-20140 (An issue was discovered in libsixel 1.8.4. There is a heap-based buffe ...)
TODO: check
CVE-2019-20139 (In Nagios XI 5.6.9, XSS exists via the nocscreenapi.php host, hostgrou ...)
@@ -54180,7 +54180,7 @@ CVE-2019-4657
CVE-2019-4656
RESERVED
CVE-2019-4655 (IBM MQ 9.1.0.0, 9.1.0.1, 9.1.0.2, 9.1.0.3, 9.1.1, 9.1.2, and 9.1.3 is ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4654
RESERVED
CVE-2019-4653
@@ -54244,7 +54244,7 @@ CVE-2019-4625
CVE-2019-4624
RESERVED
CVE-2019-4623 (IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site scripti ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4622
RESERVED
CVE-2019-4621 (IBM DataPower Gateway 7.6.0.0-7 throug 6.0.14 and 2018.4.1.0 through 2 ...)
@@ -54804,7 +54804,7 @@ CVE-2019-4345
CVE-2019-4344
RESERVED
CVE-2019-4343 (IBM Cognos Analytics 11.0 and 11.1 allows overly permissive cross-orig ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4342 (IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site scripti ...)
NOT-FOR-US: IBM
CVE-2019-4341
@@ -54820,7 +54820,7 @@ CVE-2019-4337 (IBM Robotic Process Automation with Automation Anywhere 11 could
CVE-2019-4336 (IBM Robotic Process Automation with Automation Anywhere 11 uses an ina ...)
NOT-FOR-US: IBM
CVE-2019-4335 (IBM Watson Studio Local 1.2.3 stores key files in the user's home dire ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4334 (IBM Cognos Analytics 11.0 and 11.1 could reveal sensitive information ...)
NOT-FOR-US: IBM
CVE-2019-4333
@@ -116694,7 +116694,7 @@ CVE-2018-1684 (IBM WebSphere MQ 8.0 through 9.1 is vulnerable to a error with MQ
CVE-2018-1683 (IBM WebSphere Application Server Liberty could allow a remote attacker ...)
NOT-FOR-US: IBM
CVE-2018-1682 (IBM Watson Studio Local 1.2.3 could disclose sensitive information ove ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1681
RESERVED
CVE-2018-1680 (IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 does ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1cd5e0286b7ec0a24d60563060f2f456daf0cb8c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1cd5e0286b7ec0a24d60563060f2f456daf0cb8c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191230/4a5969cc/attachment.html>
More information about the debian-security-tracker-commits
mailing list