[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Wed May 29 09:47:51 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4e9fd8b6 by Salvatore Bonaccorso at 2019-05-29T08:47:37Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3546,11 +3546,11 @@ CVE-2019-10969
 CVE-2019-10968
 	RESERVED
 CVE-2019-10967 (In Emerson Ovation OCR400 Controller 3.3.1 and earlier, a stack-based  ...)
-	TODO: check
+	NOT-FOR-US: Emerson
 CVE-2019-10966
 	RESERVED
 CVE-2019-10965 (In Emerson Ovation OCR400 Controller 3.3.1 and earlier, a heap-based b ...)
-	TODO: check
+	NOT-FOR-US: Emerson
 CVE-2019-10964
 	RESERVED
 CVE-2019-10963
@@ -13192,9 +13192,9 @@ CVE-2019-7395 (In ImageMagick before 7.0.8-25, a memory leak exists in WritePSDC
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/8a43abefb38c5e29138e1c9c515b313363541c06
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/1451
 CVE-2019-7394 (A privilege escalation vulnerability in the administrative user interf ...)
-	TODO: check
+	NOT-FOR-US: CA Technologies
 CVE-2019-7393 (A UI redress vulnerability in the administrative user interface of CA  ...)
-	TODO: check
+	NOT-FOR-US: CA Technologies
 CVE-2019-7392 (An improper authentication vulnerability in CA Privileged Access Manag ...)
 	NOT-FOR-US: CA Privileged Access Manager
 CVE-2019-7391 (ZyXEL VMG3312-B10B DSL-491HNU-B1B v2 devices allow login/login-page.cg ...)
@@ -17831,7 +17831,7 @@ CVE-2019-5591
 CVE-2019-5590
 	RESERVED
 CVE-2019-5589 (An Unsafe Search Path vulnerability in FortiClient Online Installer (W ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2019-5588
 	RESERVED
 CVE-2019-5587
@@ -27657,7 +27657,7 @@ CVE-2018-1000862 (An information exposure vulnerability exists in Jenkins 2.153
 CVE-2018-1000861 (A code execution vulnerability exists in the Stapler web framework use ...)
 	NOT-FOR-US: Jenkins
 CVE-2018-20008 (iBall Baton iB-WRB302N20122017 devices have improper access control ov ...)
-	TODO: check
+	NOT-FOR-US: iBall Baton iB-WRB302N20122017 devices
 CVE-2018-20007 (Yeelight Smart AI Speaker 3.3.10_0074 devices have improper access con ...)
 	NOT-FOR-US: Yeelight Smart AI Speaker devices
 CVE-2018-20006 (An issue was discovered in PHPok v5.0.055. There is a Stored XSS vulne ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4e9fd8b672958e46cae7ec121af4e1dd6511cac8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4e9fd8b672958e46cae7ec121af4e1dd6511cac8
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190529/e3a63cd2/attachment.html>

More information about the debian-security-tracker-commits mailing list