[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Tue Feb 26 20:32:27 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8f3a7190 by Salvatore Bonaccorso at 2019-02-26T20:31:41Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
CVE-2019-9195 (util/src/zip.rs in Grin before 1.0.2 mishandles suspicious files in an ...)
- TODO: check
+ NOT-FOR-US: Grin
CVE-2019-9194 (elFinder before 2.1.48 has a command injection vulnerability in the PHP ...)
- TODO: check
+ NOT-FOR-US: elFinder
CVE-2019-9193
RESERVED
CVE-2019-9191 (The ETSI Enterprise Transport Security (ETS, formerly known as eTLS) ...)
@@ -19,7 +19,7 @@ CVE-2019-9186
CVE-2019-9185
RESERVED
CVE-2019-9184 (SQL injection vulnerability in the J2Store plugin 3.x before 3.3.7 for ...)
- TODO: check
+ NOT-FOR-US: J2Store plugin for Joomla!
CVE-2019-9183
RESERVED
CVE-2019-9182 (There is a CSRF in ZZZCMS zzzphp V1.6.1 via a ...)
@@ -277,9 +277,9 @@ CVE-2018-20790 (tecrail Responsive FileManager 9.13.4 allows remote attackers to
CVE-2018-20789 (tecrail Responsive FileManager 9.13.4 allows remote attackers to delete ...)
NOT-FOR-US: tecrail Responsive FileManager
CVE-2018-20788 (drivers/leds/leds-aw2023.c in the led driver for custom Linux kernels ...)
- TODO: check
+ NOT-FOR-US: led driver for custom Linux kernels on the Xiaomi Redmi 6pro daisy-o-oss phone
CVE-2018-20787 (The ft5x46 touchscreen driver for custom Linux kernels on the Xiaomi ...)
- TODO: check
+ NOT-FOR-US: touchscreen driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device
CVE-2019-9082 (ThinkPHP before 3.2.4, as used in Open Source BMS v1.1.1 and other ...)
NOT-FOR-US: ThinkPHP
CVE-2019-9081 (The Illuminate component of Laravel Framework 5.7.x has a ...)
@@ -6023,13 +6023,13 @@ CVE-2019-6597
CVE-2019-6596
RESERVED
CVE-2019-6595 (Cross-site scripting (XSS) vulnerability in F5 BIG-IP Access Policy ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2019-6594 (On BIG-IP 11.5.1-11.6.3.2, 12.1.3.4-12.1.3.7, 13.0.0 HF1-13.1.1.1, and ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2019-6593 (On BIG-IP 11.5.1-11.5.4, 11.6.1, and 12.1.0, a virtual server ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2019-6592 (On BIG-IP 14.1.0-14.1.0.1, TMM may restart and produce a core file ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2019-6591 (On BIG-IP APM 14.0.0 to 14.0.0.4, 13.0.0 to 13.1.1.3 and 12.1.0 to ...)
NOT-FOR-US: BIG-IP
CVE-2019-6590 (On BIG-IP LTM 13.0.0 to 13.0.1 and 12.1.0 to 12.1.3.6, under certain ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8f3a71901690d0b728a041f7a353279c68140b21
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8f3a71901690d0b728a041f7a353279c68140b21
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190226/c8ae9604/attachment.html>
More information about the debian-security-tracker-commits
mailing list