[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Jun 4 09:51:15 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f6f44066 by Salvatore Bonaccorso at 2019-06-04T08:50:53Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -55,7 +55,7 @@ CVE-2019-12593 (IceWarp Mail Server through 10.4.4 is prone to a local file incl
 CVE-2019-12592
 	RESERVED
 CVE-2019-12591 (NETGEAR Insight Cloud with firmware before Insight 5.6 allows remote a ...)
-	TODO: check
+	NOT-FOR-US: NETGEAR
 CVE-2019-12590
 	RESERVED
 CVE-2019-12588
@@ -139,7 +139,7 @@ CVE-2019-12550
 CVE-2019-12549
 	RESERVED
 CVE-2019-12548 (Bludit before 3.9.0 allows remote code execution for an authenticated  ...)
-	TODO: check
+	NOT-FOR-US: bludit
 CVE-2019-12547
 	RESERVED
 CVE-2019-12546
@@ -537,15 +537,15 @@ CVE-2019-12379 (An issue was discovered in con_insert_unipair in drivers/tty/vt/
 CVE-2019-12378 (An issue was discovered in ip6_ra_control in net/ipv6/ipv6_sockglue.c  ...)
 	- linux <unfixed>
 CVE-2019-12377 (A vulnerable upl/async_upload.asp web API endpoint in Ivanti LANDESK M ...)
-	TODO: check
+	NOT-FOR-US: LANDESK
 CVE-2019-12376 (Use of a hard-coded encryption key in Ivanti LANDESK Management Suite  ...)
-	TODO: check
+	NOT-FOR-US: LANDESK
 CVE-2019-12375 (Open directories in Ivanti LANDESK Management Suite (LDMS, aka Endpoin ...)
-	TODO: check
+	NOT-FOR-US: LANDESK
 CVE-2019-12374 (A SQL Injection vulnerability exists in Ivanti LANDESK Management Suit ...)
-	TODO: check
+	NOT-FOR-US: LANDESK
 CVE-2019-12373 (Improper access control and open directories in Ivanti LANDESK Managem ...)
-	TODO: check
+	NOT-FOR-US: LANDESK
 CVE-2019-12372 (Petraware pTransformer ADC before 2.1.7.22827 allows SQL Injection via ...)
 	NOT-FOR-US: Petraware pTransformer ADC
 CVE-2019-12371
@@ -1047,7 +1047,7 @@ CVE-2019-12171
 CVE-2019-12170 (ATutor through 2.2.4 is vulnerable to arbitrary file uploads via the m ...)
 	NOT-FOR-US: ATutor
 CVE-2019-12169 (ATutor 2.2.4 allows Arbitrary File Upload and Directory Traversal, res ...)
-	TODO: check
+	NOT-FOR-US: ATutor
 CVE-2019-12168 (Four-Faith Wireless Mobile Router F3x24 v1.0 devices allow remote code ...)
 	NOT-FOR-US: Four-Faith Wireless Mobile Router F3x24 devices
 CVE-2019-12167 (httpGetSet/httpGet.htm on Emerson Network Power Liebert Challenger 5.1 ...)
@@ -2426,7 +2426,7 @@ CVE-2019-11582
 CVE-2019-11581
 	RESERVED
 CVE-2019-11580 (Atlassian Crowd and Crowd Data Center had the pdkinstall development p ...)
-	TODO: check
+	NOT-FOR-US: Atlassian Crowd and Crowd Data Center
 CVE-2015-9285 (esoTalk 1.0.0g4 has XSS via the PATH_INFO to the conversations/ URI. ...)
 	NOT-FOR-US: esoTalk
 CVE-2019-11591 (The WebDorado Contact Form plugin before 1.13.5 for WordPress allows C ...)
@@ -3440,7 +3440,7 @@ CVE-2019-11187
 CVE-2019-11186
 	RESERVED
 CVE-2019-11185 (The WP Live Chat Support Pro plugin through 8.0.26 for WordPress conta ...)
-	TODO: check
+	NOT-FOR-US: WP Live Chat Support Pro plugin for WordPress
 CVE-2019-11184
 	RESERVED
 CVE-2019-11183
@@ -6058,7 +6058,7 @@ CVE-2019-10125 (An issue was discovered in aio_poll() in fs/aio.c in the Linux k
 CVE-2019-10124
 	REJECTED
 CVE-2019-10123 (SQL Injection in Advanced InfoData Systems (AIS) ESEL-Server 67 (which ...)
-	TODO: check
+	NOT-FOR-US: Advanced InfoData Systems (AIS)
 CVE-2019-10122
 	RESERVED
 CVE-2019-10121
@@ -15263,61 +15263,61 @@ CVE-2019-6775
 CVE-2019-6774
 	RESERVED
 CVE-2019-6773 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6772 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6771 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6770 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6769 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6768 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6767 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6766 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6765 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit PhantomPDF
 CVE-2019-6764 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6763 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US:  Foxit Reader
 CVE-2019-6762 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit PhantomPDF
 CVE-2019-6761 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6760 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6759 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6758 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6757 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6756 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit PhantomPDF
 CVE-2019-6755 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6754 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6753 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2019-6752 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit PhantomPDF
 CVE-2019-6751 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Studio Photo
 CVE-2019-6750 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Studio Photo
 CVE-2019-6749 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Studio Photo
 CVE-2019-6748 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Studio Photo
 CVE-2019-6747 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Studio Photo
 CVE-2019-6746 (This vulnerability allows remote attackers to disclose sensitive infor ...)
-	TODO: check
+	NOT-FOR-US: Foxit Studio Photo
 CVE-2019-6745
 	RESERVED
 CVE-2019-6744



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f6f44066baeb74cd206b2ce21247dbbbf4b6476d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f6f44066baeb74cd206b2ce21247dbbbf4b6476d
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190604/48b98fe6/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list