[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4cd6e367 by Salvatore Bonaccorso at 2019-03-05T21:45:36Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -26,11 +26,11 @@ CVE-2019-XXXX [xen: grant table transfer issues on large hosts]
 	- xen <unfixed>
 	NOTE: https://xenbits.xen.org/xsa/advisory-284.html
 CVE-2019-9572 (SchoolCMS version 2.3.1 allows file upload via the theme upload feature ...)
-	TODO: check
+	NOT-FOR-US: SchoolCMS
 CVE-2019-9571
 	RESERVED
 CVE-2019-9570 (An issue was discovered in YzmCMS 5.2.0. It has XSS via the bottom text ...)
-	TODO: check
+	NOT-FOR-US: YzmCMS
 CVE-2019-9569
 	RESERVED
 CVE-2019-9568 (The "Forminator Contact Form, Poll & Quiz Builder" plugin before 1.6 ...)
@@ -3009,17 +3009,17 @@ CVE-2019-8265
 CVE-2019-8264
 	RESERVED
 CVE-2019-8263 (UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC ...)
-	TODO: check
+	NOT-FOR-US: UltraVNC
 CVE-2019-8262 (UltraVNC revision 1203 has multiple heap buffer overflow ...)
-	TODO: check
+	NOT-FOR-US: UltraVNC
 CVE-2019-8261 (UltraVNC revision 1199 has a out-of-bounds read vulnerability in VNC ...)
-	TODO: check
+	NOT-FOR-US: UltraVNC
 CVE-2019-8260 (UltraVNC revision 1199 has a out-of-bounds read vulnerability in VNC ...)
-	TODO: check
+	NOT-FOR-US: UltraVNC
 CVE-2019-8259 (UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC ...)
-	TODO: check
+	NOT-FOR-US: UltraVNC
 CVE-2019-8258 (UltraVNC revision 1198 has a heap buffer overflow vulnerability in VNC ...)
-	TODO: check
+	NOT-FOR-US: UltraVNC
 CVE-2019-8257
 	RESERVED
 CVE-2019-8256
@@ -34976,7 +34976,7 @@ CVE-2018-15363 (An Out-of-Bounds Read Privilege Escalation vulnerability in Tren
 CVE-2018-15362 (XXE in GE Proficy Cimplicity GDS versions 9.0 R2, 9.5, 10.0 ...)
 	NOT-FOR-US: GE Proficy Cimplicity GDS
 CVE-2018-15361 (UltraVNC revision 1198 has a buffer underflow vulnerability in VNC ...)
-	TODO: check
+	NOT-FOR-US: UltraVNC
 CVE-2018-15360 (An attacker without authentication can login with default credentials ...)
 	NOT-FOR-US: Eltex ESP-200 firmware
 CVE-2018-15359 (An authenticated attacker with low privileges can use insecure sudo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4cd6e3671a3e3b1830f4d696bd580d27604e439d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4cd6e3671a3e3b1830f4d696bd580d27604e439d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190305/7f8e6cd9/attachment.html>