[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Thu Jan 17 09:00:41 GMT 2019 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
55fbf7e5 by Moritz Muehlenhoff at 2019-01-17T09:00:19Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,21 +41,21 @@ CVE-2019-6464
 CVE-2019-6463
 	RESERVED
 CVE-2018-20733 (BI Web Services in SAS Web Infrastructure Platform before 9.4M6 allows ...)
-	TODO: check
+	NOT-FOR-US: SAS Web Infrastructure Platform
 CVE-2018-20732 (SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: SAS Web Infrastructure Platform
 CVE-2018-20731 (A stored cross site scripting (XSS) vulnerability in NeDi before 1.7Cp3 ...)
-	TODO: check
+	NOT-FOR-US: NeDi
 CVE-2018-20730 (A SQL injection vulnerability in NeDi before 1.7Cp3 allows any user to ...)
-	TODO: check
+	NOT-FOR-US: NeDi
 CVE-2018-20729 (A reflected cross site scripting (XSS) vulnerability in NeDi before ...)
-	TODO: check
+	NOT-FOR-US: NeDi
 CVE-2018-20728 (A cross site request forgery (CSRF) vulnerability in NeDi before 1.7Cp3 ...)
-	TODO: check
+	NOT-FOR-US: NeDi
 CVE-2018-20727 (Multiple command injection vulnerabilities in NeDi before 1.7Cp3 allow ...)
-	TODO: check
+	NOT-FOR-US: NeDi
 CVE-2015-9281 (Logon Manager in SAS Web Infrastructure Platform before 9.4M3 allows ...)
-	TODO: check
+	NOT-FOR-US: SAS Web Infrastructure Platform
 CVE-2019-6462 (An issue was discovered in cairo 1.16.0. There is an infinite loop in ...)
 	- cairo <unfixed>
 	NOTE: https://gitlab.freedesktop.org/cairo/cairo/issues/353
@@ -18326,11 +18326,11 @@ CVE-2018-18816
 CVE-2018-18815
 	RESERVED
 CVE-2018-18814 (The TIBCO Spotfire authentication component of TIBCO Software Inc.'s ...)
-	TODO: check
+	NOT-FOR-US: TIBCO
 CVE-2018-18813 (The Spotfire web server component of TIBCO Software Inc.'s TIBCO ...)
-	TODO: check
+	NOT-FOR-US: TIBCO
 CVE-2018-18812 (The Spotfire Library component of TIBCO Software Inc.'s TIBCO Spotfire ...)
-	TODO: check
+	NOT-FOR-US: TIBCO
 CVE-2018-18811
 	RESERVED
 CVE-2018-18810 (The Administrator Service component of TIBCO Software Inc.'s TIBCO ...)
@@ -26180,7 +26180,7 @@ CVE-2018-15784
 CVE-2018-15783
 	REJECTED
 CVE-2018-15782 (The Quick Setup component of RSA Authentication Manager versions prior ...)
-	TODO: check
+	NOT-FOR-US: RSA
 CVE-2018-15781
 	RESERVED
 CVE-2018-15780 (RSA Archer versions prior to 6.5.0.1 contain an improper access ...)
@@ -45210,7 +45210,7 @@ CVE-2018-8542 (A remote code execution vulnerability exists in the way that the
 CVE-2018-8541 (A remote code execution vulnerability exists in the way that the ...)
 	NOT-FOR-US: Microsoft
 CVE-2018-8540 (A remote code execution vulnerability exists when the Microsoft .NET ...)
-	TODO: check
+	NOT-FOR-US: Microsoft .NET
 CVE-2018-8539 (A remote code execution vulnerability exists in Microsoft Word ...)
 	NOT-FOR-US: Microsoft
 CVE-2018-8538
@@ -45256,7 +45256,7 @@ CVE-2018-8519
 CVE-2018-8518 (An elevation of privilege vulnerability exists when Microsoft ...)
 	NOT-FOR-US: Microsoft
 CVE-2018-8517 (A denial of service vulnerability exists when .NET Framework ...)
-	TODO: check
+	NOT-FOR-US: Microsoft .NET
 CVE-2018-8516
 	RESERVED
 CVE-2018-8515
@@ -69137,11 +69137,11 @@ CVE-2018-0680 (Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlie
 CVE-2018-0679 (Cross-site scripting vulnerability in multiple FXC Inc. network ...)
 	NOT-FOR-US: FXC
 CVE-2018-0678 (Buffer overflow in BN-SDWBP3 firmware version 1.0.9 and earlier allows ...)
-	TODO: check
+	NOT-FOR-US: BN-SDWBP3
 CVE-2018-0677 (BN-SDWBP3 firmware version 1.0.9 and earlier allows attacker with ...)
-	TODO: check
+	NOT-FOR-US: BN-SDWBP3
 CVE-2018-0676 (BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the ...)
-	TODO: check
+	NOT-FOR-US: BN-SDWBP3
 CVE-2018-0675 (AttacheCase ver.3.3.0.0 and earlier allows an arbitrary script ...)
 	NOT-FOR-US: AttacheCase
 CVE-2018-0674 (AttacheCase ver.2.8.4.0 and earlier allows an arbitrary script ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/55fbf7e5858d1e692a0c7ab33efd0cdd22bf9976

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/55fbf7e5858d1e692a0c7ab33efd0cdd22bf9976
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190117/d1dcf2e9/attachment.html>

More information about the debian-security-tracker-commits mailing list