[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
carnil at debian.org
Mon Jul 1 21:23:24 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
49485066 by Salvatore Bonaccorso at 2019-07-01T20:23:03Z
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
CVE-2019-13132
RESERVED
CVE-2019-13131 (Super Micro SuperDoctor 5, when restrictions are not implemented in ag ...)
- TODO: check
+ NOT-FOR-US: Super Micro SuperDoctor
CVE-2019-13130
RESERVED
CVE-2019-13129 (On the Motorola router CX2L MWR04L 1.01, there is a stack consumption ...)
- TODO: check
+ NOT-FOR-US: Motorola
CVE-2019-13128 (An issue was discovered on D-Link DIR-823G devices with firmware 1.02B ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2019-13127 (An issue was discovered in mxGraph through 4.0.0, related to the "draw ...)
TODO: check
CVE-2019-13126
@@ -725,7 +725,7 @@ CVE-2019-12828 (An issue was discovered in Electronic Arts Origin before 10.5.39
CVE-2019-12827
RESERVED
CVE-2019-12826 (A Cross-Site-Request-Forgery (CSRF) vulnerability in widget_logic.php ...)
- TODO: check
+ NOT-FOR-US: 2by2host Widget Logic plugin for WordPress
CVE-2019-12825
RESERVED
CVE-2019-12824
@@ -22313,7 +22313,7 @@ CVE-2019-4412
CVE-2019-4411
RESERVED
CVE-2019-4410 (IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, and 19. ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4409
RESERVED
CVE-2019-4408
@@ -22361,13 +22361,13 @@ CVE-2019-4388
CVE-2019-4387
RESERVED
CVE-2019-4386 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4385 (IBM Spectrum Protect Plus 10.1.2 may display the vSnap CIFS password i ...)
NOT-FOR-US: IBM
CVE-2019-4384 (IBM Campaign 9.1.2 and 10.1 could allow a remote attacker to traverse ...)
NOT-FOR-US: IBM
CVE-2019-4383 (When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to pro ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4382 (IBM API Connect 5.0.0.0 through 5.0.8.6 could allow an unauthorized us ...)
NOT-FOR-US: IBM
CVE-2019-4381 (IBM i 7.27.3 Clustering could allow a local attacker to obtain sensiti ...)
@@ -22419,7 +22419,7 @@ CVE-2019-4359
CVE-2019-4358
RESERVED
CVE-2019-4357 (When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to pro ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4356
RESERVED
CVE-2019-4355
@@ -22459,9 +22459,9 @@ CVE-2019-4339
CVE-2019-4338
RESERVED
CVE-2019-4337 (IBM Robotic Process Automation with Automation Anywhere 11 could allow ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4336 (IBM Robotic Process Automation with Automation Anywhere 11 uses an ina ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4335
RESERVED
CVE-2019-4334
@@ -22489,7 +22489,7 @@ CVE-2019-4324
CVE-2019-4323
RESERVED
CVE-2019-4322 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4321
RESERVED
CVE-2019-4320
@@ -22535,15 +22535,15 @@ CVE-2019-4301
CVE-2019-4300
RESERVED
CVE-2019-4299 (IBM Robotic Process Automation with Automation Anywhere 11 could allow ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4298 (IBM Robotic Process Automation with Automation Anywhere 11 uses a high ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4297 (IBM Robotic Process Automation with Automation Anywhere 11 could allow ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4296 (IBM Robotic Process Automation with Automation Anywhere 11 information ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4295 (IBM Robotic Process Automation with Automation Anywhere 11 could allow ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4294
RESERVED
CVE-2019-4293 (IBM Storwize V7000 Unified (2073) 1.6 configuration may allow an attac ...)
@@ -22659,7 +22659,7 @@ CVE-2019-4239 (IBM MQ Advanced Cloud Pak (IBM Cloud Private 1.0.0 through 3.0.1)
CVE-2019-4238 (IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable t ...)
NOT-FOR-US: IBM
CVE-2019-4237 (A Cross-Frame Scripting vulnerability in IBM InfoSphere Information Se ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4236
RESERVED
CVE-2019-4235 (IBM PureApplication System 2.2.3.0 through 2.2.5.3 does not require th ...)
@@ -22825,7 +22825,7 @@ CVE-2019-4156 (IBM Security Access Manager 9.0.1 through 9.0.6 uses weaker than
CVE-2019-4155 (IBM API Connect's Developer Portal 2018.1 and 2018.4.1.3 is impacted b ...)
NOT-FOR-US: IBM
CVE-2019-4154 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4153 (IBM Security Access Manager 9.0.1 through 9.0.6 could allow a remote a ...)
NOT-FOR-US: IBM
CVE-2019-4152 (IBM Security Access Manager 9.0.1 through 9.0.6 does not invalidate se ...)
@@ -22929,9 +22929,9 @@ CVE-2019-4104
CVE-2019-4103 (IBM Tivoli Netcool/Impact 7.1.0 allows for remote execution of command ...)
NOT-FOR-US: IBM
CVE-2019-4102 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4101 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4100
RESERVED
CVE-2019-4099
@@ -23019,7 +23019,7 @@ CVE-2019-4059 (IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficientl
CVE-2019-4058 (IBM BigFix Platform 9.2 and 9.5 could allow a low-privilege user to ma ...)
NOT-FOR-US: IBM
CVE-2019-4057 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2019-4056 (IBM Maximo Asset Management 7.6 Work Centers' application does not val ...)
NOT-FOR-US: IBM Maximo Asset Management
CVE-2019-4055 (IBM MQ 8.0.0.0 through 8.0.0.10, 9.0.0.0 through 9.0.0.5, and 9.1.0.0 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/49485066c2cc16ea43f3d877216477adb02ca261
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/49485066c2cc16ea43f3d877216477adb02ca261
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190701/edc5d04a/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list