[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Thu May 9 21:59:33 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9006a104 by Salvatore Bonaccorso at 2019-05-09T20:59:19Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -27090,7 +27090,7 @@ CVE-2019-1570 (The Expedition Migration tool 1.1.8 and earlier may allow an auth
 CVE-2019-1569 (The Expedition Migration tool 1.1.8 and earlier may allow an authentic ...)
 	NOT-FOR-US: Expedition Migration tool
 CVE-2019-1568 (Cross-site scripting (XSS) vulnerability in Palo Alto Networks Demisto ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks Demisto
 CVE-2019-1567 (The Expedition Migration tool 1.1.6 and earlier may allow an authentic ...)
 	NOT-FOR-US: Expedition Migration tool
 CVE-2019-1566 (The PAN-OS management web interface in PAN-OS 7.1.21 and earlier, PAN- ...)
@@ -65715,7 +65715,7 @@ CVE-2018-6636
 CVE-2018-6635 (System Manager in Avaya Aura before 7.1.2 does not properly use SSL in ...)
 	NOT-FOR-US: System Manager in Avaya Aura
 CVE-2018-6634 (A vulnerability in Parsec Windows 142-0 and Parsec 'Linux Ubuntu 16.04 ...)
-	TODO: check
+	NOT-FOR-US: Parsec
 CVE-2018-6633 (In Micropoint proactive defense software 2.0.20266.0146, the driver fi ...)
 	NOT-FOR-US: Micropoint proactive defense software
 CVE-2018-6632 (In Micropoint proactive defense software 2.0.20266.0146, the driver fi ...)
@@ -98925,7 +98925,7 @@ CVE-2017-12806 (In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was fo
 CVE-2017-12805 (In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in ...)
 	TODO: check
 CVE-2017-12804 (The iwgif_init_screen function in imagew-gif.c:510 in ImageWorsener 1. ...)
-	TODO: check
+	NOT-FOR-US: ImageWorsener
 CVE-2017-12803 (The Node_ValidatePtr function in corec/corec/node/node.c in mkclean 0. ...)
 	NOT-FOR-US: mkclean
 CVE-2017-12802 (The EBML_IntegerValue function in ebmlnumber.c in libebml2 through 201 ...)
@@ -98978,11 +98978,11 @@ CVE-2017-12791 (Directory traversal vulnerability in minion id validation in Sal
 	NOTE: https://github.com/saltstack/salt/commit/6366e05d0d70bd709cc4233c3faf32a759d0173a
 	NOTE: https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html
 CVE-2017-12790 (Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The  ...)
-	TODO: check
+	NOT-FOR-US: Metinfo
 CVE-2017-12789
 	RESERVED
 CVE-2017-12788 (Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php ...)
-	TODO: check
+	NOT-FOR-US: Metinfo
 CVE-2017-12787 (A network interface of the novi_process_manager_daemon service, includ ...)
 	NOT-FOR-US: NoviWare
 CVE-2017-12786 (Network interfaces of the cliengine and noviengine services, included  ...)
@@ -99082,11 +99082,11 @@ CVE-2017-12762 (In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is cop
 CVE-2017-12761 (http://codecanyon.net/user/Endober WebFile Explorer 1.0 is affected by ...)
 	TODO: check
 CVE-2017-12760 (Ynet Interactive - http://demo.ynetinteractive.com/mobiketa/ Mobiketa  ...)
-	TODO: check
+	NOT-FOR-US: Ynet Interactive
 CVE-2017-12759 (Ynet Interactive - http://demo.ynetinteractive.com/soa/ SOA School Man ...)
-	TODO: check
+	NOT-FOR-US: Ynet Interactive
 CVE-2017-12758 (https://www.joomlaextensions.co.in/ Joomla! Component Appointment 1.1  ...)
-	TODO: check
+	NOT-FOR-US: Joomla! Component Appointment
 CVE-2017-12757 (Certain Ambit Technologies Pvt. Ltd products are affected by: SQL Inje ...)
 	TODO: check
 CVE-2017-12756 (Command inject in transfer from another server in extplorer 2.1.9 and  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9006a1042c622e5885d0ace8d45e39d62b368108

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9006a1042c622e5885d0ace8d45e39d62b368108
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190509/fcd4a1c0/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list