[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Jun 12 21:43:27 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
49875880 by Salvatore Bonaccorso at 2019-06-12T20:42:58Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31809,37 +31809,37 @@ CVE-2019-1019 (A security feature bypass vulnerability exists where a NETLOGON m
 CVE-2019-1018 (An elevation of privilege vulnerability exists when DirectX improperly ...)
 	TODO: check
 CVE-2019-1017 (An elevation of privilege vulnerability exists in Windows when the Win ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1016 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1015 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1014 (An elevation of privilege vulnerability exists in Windows when the Win ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1013 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1012 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1011 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1010 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1009 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1008 (A security feature bypass vulnerability exists in Dynamics On Premise, ...)
 	NOT-FOR-US: Microsoft Dynamics On-Premise
 CVE-2019-1007 (An elevation of privilege exists in Windows Audio Service, aka 'Window ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1006
 	RESERVED
 CVE-2019-1005 (A remote code execution vulnerability exists in the way the scripting  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1004
 	RESERVED
 CVE-2019-1003 (A remote code execution vulnerability exists in the way that the Chakr ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1002 (A remote code execution vulnerability exists in the way that the Chakr ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1001
 	RESERVED
 CVE-2019-1000 (An elevation of privilege vulnerability exists in Microsoft Azure Acti ...)
@@ -31847,7 +31847,7 @@ CVE-2019-1000 (An elevation of privilege vulnerability exists in Microsoft Azure
 CVE-2019-0999
 	RESERVED
 CVE-2019-0998 (An elevation of privilege vulnerability exists when the Storage Servic ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0997
 	RESERVED
 CVE-2019-0996 (A spoofing vulnerability exists in Azure DevOps Server when it imprope ...)
@@ -31857,27 +31857,27 @@ CVE-2019-0995 (A security feature bypass vulnerability exists when urlmon.dll im
 CVE-2019-0994
 	RESERVED
 CVE-2019-0993 (A remote code execution vulnerability exists in the way that the Chakr ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0992 (A remote code execution vulnerability exists in the way that the Chakr ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0991 (A remote code execution vulnerability exists in the way that the Chakr ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0990 (An information disclosure vulnerability exists when the scripting engi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0989 (A remote code execution vulnerability exists in the way that the Chakr ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0988 (A remote code execution vulnerability exists in the way that the scrip ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0987
 	RESERVED
 CVE-2019-0986 (An elevation of privilege vulnerability exists when the Windows User P ...)
 	TODO: check
 CVE-2019-0985 (A remote code execution vulnerability exists when the Microsoft Speech ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0984 (An elevation of privilege vulnerability exists when the Windows Common ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0983 (An elevation of privilege vulnerability exists when the Storage Servic ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0982 (A denial of service vulnerability exists when ASP.NET Core improperly  ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0981 (A denial of service vulnerability exists when .NET Framework or .NET C ...)
@@ -31889,7 +31889,7 @@ CVE-2019-0979 (A Cross-site Scripting (XSS) vulnerability exists when Azure DevO
 CVE-2019-0978
 	RESERVED
 CVE-2019-0977 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0976 (A tampering vulnerability exists in the NuGet Package Manager for Linu ...)
 	- nuget <not-affected> (Vulnerable code introduced in 5.0.0)
 	NOTE: Fixed in NuGet.Client 5.0.2.
@@ -31898,11 +31898,11 @@ CVE-2019-0976 (A tampering vulnerability exists in the NuGet Package Manager for
 CVE-2019-0975
 	RESERVED
 CVE-2019-0974 (A remote code execution vulnerability exists when the Windows Jet Data ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0973 (An elevation of privilege vulnerability exists in the Windows Installe ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0972 (This security update corrects a denial of service in the Local Securit ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0971 (An information disclosure vulnerability exists when Azure DevOps Serve ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0970
@@ -31910,7 +31910,7 @@ CVE-2019-0970
 CVE-2019-0969
 	RESERVED
 CVE-2019-0968 (An information disclosure vulnerability exists when the Windows GDI co ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0967
 	RESERVED
 CVE-2019-0966
@@ -31926,9 +31926,9 @@ CVE-2019-0962
 CVE-2019-0961 (An information disclosure vulnerability exists when the Windows GDI co ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0960 (An elevation of privilege vulnerability exists in Windows when the Win ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0959 (An elevation of privilege vulnerability exists when the Windows Common ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0958 (An elevation of privilege vulnerability exists when Microsoft SharePoi ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0957 (An elevation of privilege vulnerability exists when Microsoft SharePoi ...)
@@ -31950,7 +31950,7 @@ CVE-2019-0950 (A spoofing vulnerability exists when Microsoft SharePoint Server
 CVE-2019-0949 (A spoofing vulnerability exists when Microsoft SharePoint Server does  ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0948 (An information disclosure vulnerability exists in the Windows Event Vi ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0947 (A remote code execution vulnerability exists when the Microsoft Office ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0946 (A remote code execution vulnerability exists when the Microsoft Office ...)
@@ -31960,11 +31960,11 @@ CVE-2019-0945 (A remote code execution vulnerability exists when the Microsoft O
 CVE-2019-0944
 	RESERVED
 CVE-2019-0943 (An elevation of privilege vulnerability exists when Windows improperly ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0942 (An elevation of privilege vulnerability exists in the Unified Write Fi ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0941 (A denial of service exists in Microsoft IIS Server when the optional r ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0940 (A remote code execution vulnerability exists in the way that Microsoft ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0939
@@ -32006,7 +32006,7 @@ CVE-2019-0922 (A remote code execution vulnerability exists in the way that the
 CVE-2019-0921 (An spoofing vulnerability exists when Internet Explorer improperly han ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-0920 (A remote code execution vulnerability exists in the way the scripting  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0919
 	RESERVED
 CVE-2019-0918 (A remote code execution vulnerability exists in the way the scripting  ...)
@@ -32028,7 +32028,7 @@ CVE-2019-0911 (A remote code execution vulnerability exists in the way the scrip
 CVE-2019-0910
 	RESERVED
 CVE-2019-0909 (A remote code execution vulnerability exists when the Windows Jet Data ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-0908 (A remote code execution vulnerability exists when the Windows Jet Data ...)
 	TODO: check
 CVE-2019-0907 (A remote code execution vulnerability exists when the Windows Jet Data ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/49875880f1d0d5e21891c61dce988dbe29bbca14

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/49875880f1d0d5e21891c61dce988dbe29bbca14
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190612/3105a354/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list