[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Nov 26 20:27:12 GMT 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8fdeae9f by Salvatore Bonaccorso at 2019-11-26T20:26:28Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2019-19308
 CVE-2019-19307 (An integer overflow in parse_mqtt in mongoose.c in Cesanta Mongoose 6. ...)
 	TODO: check
 CVE-2019-19306 (The Zoho CRM Lead Magnet plugin 1.6.9.1 for WordPress allows XSS via m ...)
-	TODO: check
+	NOT-FOR-US: Zoho CRM Lead Magnet plugin for WordPress
 CVE-2019-19305
 	RESERVED
 CVE-2019-19304
@@ -71,11 +71,11 @@ CVE-2019-19274 (typed_ast 1.3.0 and 1.3.1 has a handle_keywordonly_args out-of-b
 CVE-2019-19273
 	RESERVED
 CVE-2015-9539 (The Fast Secure Contact Form plugin before 4.0.38 for WordPress allows ...)
-	TODO: check
+	NOT-FOR-US: Fast Secure Contact Form plugin for WordPress
 CVE-2015-9538 (The NextGEN Gallery plugin before 2.1.15 for WordPress allows ../ Dire ...)
-	TODO: check
+	NOT-FOR-US: NextGEN Gallery plugin for WordPress
 CVE-2015-9537 (The NextGEN Gallery plugin before 2.1.10 for WordPress has multiple XS ...)
-	TODO: check
+	NOT-FOR-US: NextGEN Gallery plugin for WordPress
 CVE-2019-19272 (An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. Dir ...)
 	- proftpd-dfsg 1.3.6-1
 	[stretch] - proftpd-dfsg <no-dsa> (Minor issue)
@@ -3851,7 +3851,7 @@ CVE-2019-18582
 CVE-2019-18581
 	RESERVED
 CVE-2019-18580 (Dell EMC Storage Monitoring and Reporting version 4.3.1 contains a Jav ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2019-18579
 	RESERVED
 CVE-2019-18578
@@ -45294,7 +45294,7 @@ CVE-2019-4389
 CVE-2019-4388
 	RESERVED
 CVE-2019-4387 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.2.0 i ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4386 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 ...)
 	NOT-FOR-US: IBM
 CVE-2019-4385 (IBM Spectrum Protect Plus 10.1.2 may display the vSnap CIFS password i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8fdeae9f52c182090e9f48cc43fe7958218ed52c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8fdeae9f52c182090e9f48cc43fe7958218ed52c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191126/6b93c998/attachment.html>

More information about the debian-security-tracker-commits mailing list