[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Sat May 18 10:01:46 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
94ab9f0f by Salvatore Bonaccorso at 2019-05-18T09:01:23Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
 CVE-2019-12174
 	RESERVED
 CVE-2019-12173 (MacDown 0.7.1 (870) allows remote code execution via a file:\\\ URI, w ...)
-	TODO: check
+	NOT-FOR-US: MacDown
 CVE-2019-12172 (Typora 0.9.9.21.1 (1913) allows arbitrary code execution via a modifie ...)
-	TODO: check
+	NOT-FOR-US: Typora
 CVE-2019-12171
 	RESERVED
 CVE-2019-12170 (ATutor through 2.2.4 is vulnerable to arbitrary file uploads via the m ...)
-	TODO: check
+	NOT-FOR-US: ATutor
 CVE-2019-12169
 	RESERVED
 CVE-2019-12168 (Four-Faith Wireless Mobile Router F3x24 v1.0 devices allow remote code ...)
-	TODO: check
+	NOT-FOR-US: Four-Faith Wireless Mobile Router F3x24 devices
 CVE-2019-12167
 	RESERVED
 CVE-2019-12166
@@ -21,7 +21,7 @@ CVE-2019-12165
 CVE-2019-12164
 	RESERVED
 CVE-2019-12163 (GAT-Ship Web Module through 1.30 allows remote attackers to obtain pot ...)
-	TODO: check
+	NOT-FOR-US: GAT-Ship Web Module
 CVE-2019-12162
 	RESERVED
 CVE-2019-12161 (WPO WebPageTest 19.04 allows SSRF because ValidateURL in www/runtest.p ...)
@@ -1125,7 +1125,7 @@ CVE-2019-11675 (The groonga-httpd package 6.1.5-1 for Debian sets the /var/log/g
 	[buster] - groonga 9.0.0-1+deb10u1
 	[stretch] - groonga <no-dsa> (Minor issue, can be fixed via point release)
 CVE-2019-11644 (In the F-Secure installer in F-Secure SAFE for Windows before 17.6, F- ...)
-	TODO: check
+	NOT-FOR-US: F-Secure
 CVE-2019-11643 (Persistent XSS has been found in the OneShield Policy (Dragon Core) fr ...)
 	NOT-FOR-US: OneShield Policy (Dragon Core) framework
 CVE-2019-11642 (A log poisoning vulnerability has been discovered in the OneShield Pol ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/94ab9f0f236b5e2e096ad547f3625c0c4d8a82c0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/94ab9f0f236b5e2e096ad547f3625c0c4d8a82c0
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190518/12b8463a/attachment.html>

More information about the debian-security-tracker-commits mailing list