[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Jul 9 09:16:18 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9362de62 by Salvatore Bonaccorso at 2019-07-09T08:15:54Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2019-13450 (In the Zoom Client through 4.4.4 and RingCentral 7.0.136380.0312 on ma ...)
-	TODO: check
+	NOT-FOR-US: Zoom Client and RingCentral on MacOS
 CVE-2019-13449 (In the Zoom Client before 4.4.2 on macOS, remote attackers can cause a ...)
-	TODO: check
+	NOT-FOR-US: Zoom Client on macOS
 CVE-2019-13448
 	RESERVED
 CVE-2019-13447
@@ -1303,7 +1303,7 @@ CVE-2019-12932 (A stored XSS vulnerability was found in SeedDMS 5.1.11 due to po
 CVE-2019-12931
 	RESERVED
 CVE-2019-12930 (A cross-site scripting (XSS) vulnerability in noMenu() and noSubMenu() ...)
-	TODO: check
+	NOT-FOR-US: WIKINDX
 CVE-2019-12929 (** DISPUTED ** The QMP guest_exec command in QEMU 4.0.0 and earlier is ...)
 	- qemu <unfixed> (unimportant)
 	- qemu-kvm <removed> (unimportant)
@@ -1317,15 +1317,15 @@ CVE-2019-12928 (** DISPUTED ** The QMP migrate command in QEMU version 4.0.0 and
 	NOTE: The QEMU machine protocol (QMP) should not be exposed to unprivileged users,
 	NOTE: and is only intended for administrative control of QEMU instances.
 CVE-2019-12927 (MailEnable Enterprise Premium 10.23 was vulnerable to stored and refle ...)
-	TODO: check
+	NOT-FOR-US: MailEnable Enterprise Premium
 CVE-2019-12926 (MailEnable Enterprise Premium 10.23 did not use appropriate access con ...)
-	TODO: check
+	NOT-FOR-US: MailEnable Enterprise Premium
 CVE-2019-12925 (MailEnable Enterprise Premium 10.23 was vulnerable to multiple directo ...)
-	TODO: check
+	NOT-FOR-US: MailEnable Enterprise Premium
 CVE-2019-12924 (MailEnable Enterprise Premium 10.23 was vulnerable to XML External Ent ...)
-	TODO: check
+	NOT-FOR-US: MailEnable Enterprise Premium
 CVE-2019-12923 (In MailEnable Enterprise Premium 10.23, the potential cross-site reque ...)
-	TODO: check
+	NOT-FOR-US: MailEnable Enterprise Premium
 CVE-2019-12922
 	RESERVED
 CVE-2019-12921



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9362de62d34e33dceae773402a9e496bc91f0007

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9362de62d34e33dceae773402a9e496bc91f0007
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190709/1cb1c576/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list