[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Jun 11 05:46:37 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2bcdbdae by Salvatore Bonaccorso at 2019-06-11T04:46:03Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,11 +3,11 @@ CVE-2019-12790 (In radare2 through 3.5.1, there is a heap-based buffer over-read
 CVE-2019-12789
 	RESERVED
 CVE-2019-12788 (An issue was discovered in Photodex ProShow Producer v9.0.3797 (an app ...)
-	TODO: check
+	NOT-FOR-US: Photodex ProShow Producer
 CVE-2019-12787 (An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2 ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2019-12786 (An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2 ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2019-12785
 	RESERVED
 CVE-2019-12784
@@ -2118,7 +2118,7 @@ CVE-2019-11879 (** DISPUTED ** The WEBrick gem 1.4.2 for Ruby allows directory t
 CVE-2019-11878 (An issue was discovered on XiongMai Besder IP20H1 V4.02.R12.00035520.1 ...)
 	NOT-FOR-US: XiongMai Besder IP20H1 cameras
 CVE-2019-11877 (XSS on the PIX-Link Repeater/Router LV-WR09 with firmware v28K.MiniRou ...)
-	TODO: check
+	NOT-FOR-US: PIX-Link Repeater/Router LV-WR09
 CVE-2019-11876 (In PrestaShop 1.7.5.2, the shop_country parameter in the install/index ...)
 	NOT-FOR-US: PrestaShop
 CVE-2019-11875 (In AutomateAppCore.dll in Blue Prism Robotic Process Automation 6.4.0. ...)
@@ -7805,11 +7805,11 @@ CVE-2019-9883 (Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vuln
 CVE-2019-9882 (Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerabi ...)
 	NOT-FOR-US: MailSherlock
 CVE-2019-9881 (The createComment mutation in the WPGraphQL 0.2.3 plugin for WordPress ...)
-	TODO: check
+	NOT-FOR-US: WPGraphQL plugin for WordPress
 CVE-2019-9880 (An issue was discovered in the WPGraphQL 0.2.3 plugin for WordPress. B ...)
-	TODO: check
+	NOT-FOR-US: WPGraphQL plugin for WordPress
 CVE-2019-9879 (The WPGraphQL 0.2.3 plugin for WordPress allows remote attackers to re ...)
-	TODO: check
+	NOT-FOR-US: WPGraphQL plugin for WordPress
 CVE-2019-9878 (There is an invalid memory access in the function GfxIndexedColorSpace ...)
 	- xpdf <not-affected> (xpdf in Debian uses poppler, which is not affected or fixed)
 CVE-2019-9877 (There is an invalid memory access vulnerability in the function TextPa ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2bcdbdaeda34952bc5011853eac3712175990c35

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2bcdbdaeda34952bc5011853eac3712175990c35
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190611/f5ed53fb/attachment.html>

More information about the debian-security-tracker-commits mailing list