[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Jul 17 21:49:23 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ce0fbfc8 by Salvatore Bonaccorso at 2019-07-17T20:47:42Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45,9 +45,9 @@ CVE-2019-13615 (VideoLAN VLC media player 3.0.7.1 has a heap-based buffer over-r
 	- vlc <unfixed> (bug #932241)
 	NOTE: https://trac.videolan.org/vlc/ticket/22474
 CVE-2019-13614 (CMD_SET_CONFIG_COUNTRY in the TP-Link Device Debug protocol in TP-Link ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2019-13613 (CMD_FTEST_CONFIG in the TP-Link Device Debug protocol in TP-Link Wirel ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2019-13612 (MDaemon Email Server 19 skips SpamAssassin checks by default for e-mai ...)
 	NOT-FOR-US: MDaemon Email Server
 CVE-2019-13611 (An issue was discovered in python-engineio through 3.8.2. There is a C ...)
@@ -1095,9 +1095,9 @@ CVE-2019-13587
 CVE-2019-13586
 	RESERVED
 CVE-2019-13585 (The remote admin webserver on FANUC Robotics Virtual Robot Controller  ...)
-	TODO: check
+	NOT-FOR-US: FANUC Robotics Virtual Robot Controller
 CVE-2019-13584 (The remote admin webserver on FANUC Robotics Virtual Robot Controller  ...)
-	TODO: check
+	NOT-FOR-US: FANUC Robotics Virtual Robot Controller
 CVE-2019-13583
 	RESERVED
 CVE-2019-13582
@@ -1490,7 +1490,7 @@ CVE-2019-13405
 CVE-2019-13404 (** DISPUTED ** The MSI installer for Python through 2.7.16 on Windows  ...)
 	NOT-FOR-US: Disputed issue for Windows installer for Python
 CVE-2019-13403 (Temenos CWX version 8.9 has an Broken Access Control vulnerability in  ...)
-	TODO: check
+	NOT-FOR-US: Temenos CWX
 CVE-2019-13402 (/usr/sbin/default.sh and /usr/apache/htdocs/cgi-bin/admin/hardfactoryd ...)
 	NOT-FOR-US: Dynacolor
 CVE-2019-13401 (Dynacolor FCM-MB40 v1.2.0.0 devices have CSRF in all scripts under cgi ...)
@@ -1613,7 +1613,7 @@ CVE-2019-13348
 CVE-2019-13347
 	RESERVED
 CVE-2019-13346 (In MyT 1.5.1, the User[username] parameter has XSS. ...)
-	TODO: check
+	NOT-FOR-US: MyT
 CVE-2019-13345 (The cachemgr.cgi web module of Squid through 4.7 has XSS via the user_ ...)
 	{DLA-1847-1}
 	- squid <unfixed> (bug #931478)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ce0fbfc80075dcb8df5028ff3a824a5c8b4e0d66

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ce0fbfc80075dcb8df5028ff3a824a5c8b4e0d66
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190717/4b6bf960/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list