[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Sun Jul 28 21:24:15 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
04a2f7f0 by Salvatore Bonaccorso at 2019-07-28T20:23:29Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,11 +19,11 @@ CVE-2019-14366
 CVE-2019-14365
 	RESERVED
 CVE-2019-14364 (An XSS vulnerability in the "Email Subscribers & Newsletters" plug ...)
-	TODO: check
+	NOT-FOR-US: "Email Subscribers & Newsletters" plugin for WordPress
 CVE-2019-14363 (A stack-based buffer overflow in the upnpd binary running on NETGEAR W ...)
-	TODO: check
+	NOT-FOR-US: NETGEAR
 CVE-2019-14362 (Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. T ...)
-	TODO: check
+	NOT-FOR-US: Openbravo ERP
 CVE-2019-14361
 	RESERVED
 CVE-2019-14360
@@ -43,13 +43,13 @@ CVE-2019-14354
 CVE-2019-14353
 	RESERVED
 CVE-2019-14352 (** DISPUTED ** In Joget Workflow 6.0.20, CSV Injection, also known as  ...)
-	TODO: check
+	NOT-FOR-US: Joget Workflow
 CVE-2019-14351 (EspoCRM 5.6.4 is vulnerable to user password hash enumeration. A malic ...)
-	TODO: check
+	NOT-FOR-US: EspoCRM
 CVE-2019-14350 (EspoCRM 5.6.4 is vulnerable to stored XSS due to lack of filtration of ...)
-	TODO: check
+	NOT-FOR-US: EspoCRM
 CVE-2019-14349 (EspoCRM version 5.6.4 is vulnerable to stored XSS due to lack of filtr ...)
-	TODO: check
+	NOT-FOR-US: EspoCRM
 CVE-2019-14348
 	RESERVED
 CVE-2019-14347
@@ -85,13 +85,13 @@ CVE-2019-14333
 CVE-2019-14332
 	RESERVED
 CVE-2019-14331 (An issue was discovered in EspoCRM before 5.6.6. Stored XSS exists due ...)
-	TODO: check
+	NOT-FOR-US: EspoCRM
 CVE-2019-14330 (An issue was discovered in EspoCRM before 5.6.6. Stored XSS exists due ...)
-	TODO: check
+	NOT-FOR-US: EspoCRM
 CVE-2019-14329 (An issue was discovered in EspoCRM before 5.6.6. There is stored XSS d ...)
-	TODO: check
+	NOT-FOR-US: EspoCRM
 CVE-2019-14328 (The Simple Membership plugin before 3.8.5 for WordPress has CSRF affec ...)
-	TODO: check
+	NOT-FOR-US: Simple Membership plugin for WordPress
 CVE-2019-14327
 	RESERVED
 CVE-2019-14326



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/04a2f7f026c49ee924cff2f7f462640f2557c45b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/04a2f7f026c49ee924cff2f7f462640f2557c45b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190728/2ede3a0f/attachment.html>

More information about the debian-security-tracker-commits mailing list