[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Fri Mar 15 08:17:35 GMT 2019 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ba8087e6 by Moritz Muehlenhoff at 2019-03-15T08:17:13Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2019-9830
 	RESERVED
 CVE-2019-9829 (Maccms 10 allows remote attackers to execute arbitrary PHP code by ...)
-	TODO: check
+	NOT-FOR-US: Maccms
 CVE-2019-9828
 	RESERVED
 CVE-2019-9827
@@ -9,7 +9,7 @@ CVE-2019-9827
 CVE-2019-9826
 	RESERVED
 CVE-2019-9825 (FeiFeiCMS 4.1.190209 allows remote attackers to upload and execute ...)
-	TODO: check
+	NOT-FOR-US: FeiFeiCMS
 CVE-2019-9824
 	RESERVED
 CVE-2019-9823
@@ -87,7 +87,7 @@ CVE-2019-9788
 CVE-2019-9786
 	RESERVED
 CVE-2019-9785 (gitnote 3.1.0 allows remote attackers to execute arbitrary code via a ...)
-	TODO: check
+	NOT-FOR-US: gitnote
 CVE-2019-9784
 	RESERVED
 CVE-2019-9783
@@ -99,7 +99,7 @@ CVE-2019-9781
 CVE-2019-9780
 	RESERVED
 CVE-2018-20801 (In js/parts/SvgRenderer.js in Highcharts JS before 6.1.0, the use of ...)
-	TODO: check
+	NOT-FOR-US: Highcharts JS
 CVE-2019-9787 (WordPress before 5.1.1 does not properly filter comment content, ...)
 	- wordpress 5.1.1+dfsg1-1 (bug #924546)
 	NOTE: https://blog.ripstech.com/2019/wordpress-csrf-to-rce/
@@ -9375,17 +9375,17 @@ CVE-2019-5924 (Cross-site request forgery (CSRF) vulnerability in Smart Forms 2.
 CVE-2019-5923 (Directory traversal vulnerability in iChain Insurance Wallet App for ...)
 	NOT-FOR-US: iChain Insurance Wallet App for iOS
 CVE-2019-5922 (Untrusted search path vulnerability in The installer of Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft 
 CVE-2019-5921 (Untrusted search path vulnerability in Windows 7 allows an attacker to ...)
 	NOT-FOR-US: Microsoft Windows
 CVE-2019-5920 (Cross-site request forgery (CSRF) vulnerability in FormCraft 1.2.1 and ...)
-	TODO: check
+	NOT-FOR-US: FormCraft
 CVE-2019-5919 (An incomplete cryptography of the data store function by using hidden ...)
-	TODO: check
+	NOT-FOR-US: Nablarch
 CVE-2019-5918 (Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to conduct XML ...)
-	TODO: check
+	NOT-FOR-US: Nablarch
 CVE-2019-5917 (azure-umqtt-c (available through GitHub prior to 2017 October 6) ...)
-	TODO: check
+	NOT-FOR-US: azure-umqtt-c
 CVE-2019-5916 (Input validation issue in POWER EGG(Ver 2.0.1, Ver 2.02 Patch 3 and ...)
 	NOT-FOR-US: POWER EGG
 CVE-2019-5915 (Open redirect vulnerability in OpenAM (Open Source Edition) 13.0 ...)
@@ -14026,7 +14026,7 @@ CVE-2019-3787
 CVE-2019-3786
 	RESERVED
 CVE-2019-3785 (Cloud Foundry Cloud Controller, versions prior to 1.78.0, contain an ...)
-	TODO: check
+	NOT-FOR-US: Cloud Foundry
 CVE-2019-3784 (Cloud Foundry Stratos, versions prior to 2.3.0, contains an insecure ...)
 	NOT-FOR-US: Cloud Foundry Stratos
 CVE-2019-3783 (Cloud Foundry Stratos, versions prior to 2.3.0, deploys with a public ...)
@@ -14917,7 +14917,7 @@ CVE-2018-20622 (JasPer 2.0.14 has a memory leak in base/jas_malloc.c in libjaspe
 	- jasper <removed>
 	NOTE: https://github.com/mdadams/jasper/issues/193
 CVE-2018-20621 (An issue was discovered in Microvirt MEmu 6.0.6. The MemuService.exe ...)
-	TODO: check
+	NOT-FOR-US: Microvirt MEmu
 CVE-2018-20620
 	RESERVED
 CVE-2018-20619
@@ -24491,7 +24491,7 @@ CVE-2019-0273
 CVE-2019-0272
 	RESERVED
 CVE-2019-0271 (ABAP Server (used in NetWeaver and Suite/ERP) and ABAP Platform does ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2019-0270 (ABAP Server of SAP NetWeaver and ABAP Platform fail to perform ...)
 	NOT-FOR-US: SAP
 CVE-2019-0269 (SAP BusinessObjects Business Intelligence Platform (BI Workspace), ...)
@@ -25583,7 +25583,7 @@ CVE-2019-0131
 CVE-2019-0130
 	RESERVED
 CVE-2019-0129 (Improper permissions for Intel(R) USB 3.0 Creator Utility all versions ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2019-0128
 	RESERVED
 CVE-2019-0127 (Logic error in the installer for Intel(R) OpenVINO(TM) 2018 R3 and ...)
@@ -44075,7 +44075,7 @@ CVE-2018-12226
 CVE-2018-12225
 	RESERVED
 CVE-2018-12224 (Buffer leakage in igdkm64.sys in Intel(R) Graphics Driver for Windows* ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2018-12223 (Insufficient access control in User Mode Driver in Intel(R) Graphics ...)
 	TODO: check
 CVE-2018-12222 (Insufficient input validation in Kernel Mode Driver in Intel(R) ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ba8087e6e365121930031fcfb2e06b206dda4296

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ba8087e6e365121930031fcfb2e06b206dda4296
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190315/93ca0f32/attachment.html>

More information about the debian-security-tracker-commits mailing list