[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Sat Jul 20 12:25:02 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ac58dbd1 by Salvatore Bonaccorso at 2019-07-20T11:24:28Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -425,7 +425,7 @@ CVE-2019-13993
 CVE-2019-13992
 	RESERVED
 CVE-2019-13991 (Embedded systems based on Arduino before Rev3 allow remote attackers t ...)
-	TODO: check
+	NOT-FOR-US: Issue on embedded systems based on Arduino before Rev3
 CVE-2019-13990
 	RESERVED
 CVE-2019-13989 (dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat() func ...)
@@ -2310,7 +2310,7 @@ CVE-2019-13571
 CVE-2019-13570
 	RESERVED
 CVE-2019-13569 (A SQL injection vulnerability exists in the Icegram Email Subscribers  ...)
-	TODO: check
+	NOT-FOR-US: Icegram Email Subscribers & Newsletters plugin for WordPress
 CVE-2019-13568
 	RESERVED
 CVE-2019-13567 (The Zoom Client before 4.4.53932.0709 on macOS allows remote code exec ...)
@@ -3895,7 +3895,7 @@ CVE-2019-12937 (apps/gsudo.c in gsudo in ToaruOS through 1.10.9 has a buffer ove
 CVE-2019-12936 (BlueStacks App Player 2, 3, and 4 before 4.90 allows DNS Rebinding for ...)
 	NOT-FOR-US: BlueStacks App Player
 CVE-2019-12934 (An issue was discovered in the wp-code-highlightjs plugin through 0.6. ...)
-	TODO: check
+	NOT-FOR-US: wp-code-highlightjs plugin for WordPress
 CVE-2019-12935 (Shopware before 5.5.8 has XSS via the Query String to the backend/Logi ...)
 	NOT-FOR-US: Shopware
 CVE-2019-12933 (An XSS issue on the PIX-Link Repeater/Router LV-WR09 with firmware v28 ...)
@@ -4469,7 +4469,7 @@ CVE-2019-12727 (On Ubiquiti airCam 3.1.4 devices, a Denial of Service vulnerabil
 CVE-2019-12726
 	RESERVED
 CVE-2019-12725 (Zeroshell 3.9.0 is prone to a remote command execution vulnerability.  ...)
-	TODO: check
+	NOT-FOR-US: Zeroshell
 CVE-2019-12724 (An issue was discovered in the Teclib News plugin through 1.5.2 for GL ...)
 	NOT-FOR-US: Teclib
 CVE-2019-12723 (An issue was discovered in the Teclib Fields plugin through 1.9.2 for  ...)
@@ -6287,9 +6287,9 @@ CVE-2019-11992
 CVE-2019-11991 (HPE has identified a vulnerability in HPE 3PAR Service Processor (SP)  ...)
 	NOT-FOR-US: HPE 3PAR Service Processor
 CVE-2019-11990 (A security vulnerability in HPE IceWall SSO Agent Option and IceWall M ...)
-	TODO: check
+	NOT-FOR-US: HPE IceWall
 CVE-2019-11989 (A security vulnerability in HPE IceWall SSO Agent Option and IceWall M ...)
-	TODO: check
+	NOT-FOR-US: HPE IceWall
 CVE-2019-11988 (A Remote Unauthorized Access vulnerability was identified in HPE Smart ...)
 	NOT-FOR-US: HPE
 CVE-2019-11987 (A security vulnerability in HPE Smart Update Manager (SUM) prior to v8 ...)
@@ -14319,9 +14319,9 @@ CVE-2019-9231 (An issue was discovered on AudioCodes Mediant 500L-MSBR, 500-MBSR
 CVE-2019-9230 (An issue was discovered on AudioCodes Mediant 500L-MSBR, 500-MBSR, M80 ...)
 	NOT-FOR-US: AudioCodes Mediant devices
 CVE-2019-9229 (An issue was discovered on AudioCodes Mediant 500L-MSBR, 500-MBSR, M80 ...)
-	TODO: check
+	NOT-FOR-US: AudioCodes
 CVE-2019-9228 (** DISPUTED ** An issue was discovered on AudioCodes Mediant 500L-MSBR ...)
-	TODO: check
+	NOT-FOR-US: AudioCodes
 CVE-2019-9227 (An issue was discovered in baigo CMS 2.1.1. There is a vulnerability t ...)
 	NOT-FOR-US: baigo CMS
 CVE-2019-9226 (An issue was discovered in baigo CMS 2.1.1. There is a persistent XSS  ...)
@@ -18385,7 +18385,7 @@ CVE-2019-7592
 CVE-2019-7591
 	RESERVED
 CVE-2019-7590 (ExacqVision Server’s services 'exacqVisionServer', 'dvrdhcpserve ...)
-	TODO: check
+	NOT-FOR-US: ExacqVision
 CVE-2019-7589
 	RESERVED
 CVE-2019-7588 (A vulnerability in the exacqVision Enterprise System Manager (ESM) v5. ...)
@@ -34627,7 +34627,7 @@ CVE-2019-1581
 CVE-2019-1580
 	RESERVED
 CVE-2019-1579 (Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and  ...)
-	TODO: check
+	NOT-FOR-US: PAN-OS
 CVE-2019-1578 (Cross-site scripting vulnerability in Palo Alto Networks MineMeld vers ...)
 	NOT-FOR-US: Palo Alto Networks MineMeld
 CVE-2019-1577 (Code injection vulnerability in Palo Alto Networks Traps 5.0.5 and ear ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ac58dbd14fb01d18bd2200d5aff1cf591d4619b4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ac58dbd14fb01d18bd2200d5aff1cf591d4619b4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190720/763f2d72/attachment.html>


More information about the debian-security-tracker-commits mailing list