[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b3502931 by Moritz Muehlenhoff at 2019-03-28T19:21:27Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,21 @@
+CVE-2019-1003048
+	NOT-FOR-US: Jenkins plugin
+CVE-2019-1003047
+	NOT-FOR-US: Jenkins plugin
+CVE-2019-1003046
+	NOT-FOR-US: Jenkins plugin
+CVE-2019-1003045
+	NOT-FOR-US: Jenkins plugin
+CVE-2019-1003044
+	NOT-FOR-US: Jenkins plugin
+CVE-2019-1003043
+	NOT-FOR-US: Jenkins plugin
+CVE-2019-1003042
+	NOT-FOR-US: Jenkins plugin
+CVE-2019-1003041
+	NOT-FOR-US: Jenkins plugin
+CVE-2019-1003040
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10249
 	RESERVED
 CVE-2019-10248
@@ -19,7 +37,7 @@ CVE-2019-10241
 CVE-2019-10240
 	RESERVED
 CVE-2017-18365 (The Management Console in GitHub Enterprise 2.8.x before 2.8.7 has a d ...)
-	TODO: check
+	NOT-FOR-US: GitHub Enterprise
 CVE-2019-10239
 	RESERVED
 CVE-2019-10238 (Sitemagic CMS v4.4 has XSS in SMFiles/FrmUpload.class.php via the file ...)
@@ -255,7 +273,7 @@ CVE-2019-10127
 CVE-2019-10126
 	RESERVED
 CVE-2017-18364 (phpFK lite has XSS via the faq.php, members.php, or search.php query s ...)
-	TODO: check
+	NOT-FOR-US: phpFK
 CVE-2019-10125 (An issue was discovered in aio_poll() in fs/aio.c in the Linux kernel  ...)
 	- linux <unfixed>
 	NOTE: https://patchwork.kernel.org/patch/10828359/
@@ -273,7 +291,7 @@ CVE-2019-10120
 CVE-2019-10119
 	RESERVED
 CVE-2019-10118 (Snipe-IT before 4.6.14 has XSS, as demonstrated by log_meta values and ...)
-	TODO: check
+	NOT-FOR-US: Snipe-IT
 CVE-2019-10117
 	RESERVED
 CVE-2019-10116
@@ -319,7 +337,7 @@ CVE-2018-20815 [device_tree: heap buffer overflow while loading device tree blob
 	NOTE: https://git.qemu.org/?p=qemu.git;a=commitdiff;h=da885fe1ee8b4589047484bd7fa05a4905b52b17
 	NOTE: https://www.openwall.com/lists/oss-security/2019/03/27/1
 CVE-2016-10744 (In Select2 through 4.0.5, as used in Snipe-IT and other products, rich ...)
-	TODO: check
+	NOT-FOR-US: Snipe-IT
 CVE-2019-10099
 	RESERVED
 CVE-2019-10098



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b35029314df9fe7d26361bda5bcac71e3d58ad7c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b35029314df9fe7d26361bda5bcac71e3d58ad7c
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190328/b79146a8/attachment-0001.html>