[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6e5d33c0 by Salvatore Bonaccorso at 2019-10-11T20:54:31Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1028,7 +1028,7 @@ CVE-2019-17061
 CVE-2019-17060
 	RESERVED
 CVE-2019-17059 (A shell injection vulnerability on the Sophos Cyberoam firewall applia ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2019-17058
 	RESERVED
 CVE-2019-17057
@@ -8113,9 +8113,9 @@ CVE-2019-14572
 CVE-2019-14571
 	RESERVED
 CVE-2019-14570 (Memory corruption in system firmware for Intel(R) NUC may allow a priv ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2019-14569 (Pointer corruption in system firmware for Intel(R) NUC may allow a pri ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2019-14568
 	RESERVED
 CVE-2019-14567
@@ -8295,7 +8295,7 @@ CVE-2019-14511 (Sphinx Technologies Sphinx 3.1.1 by default has no authenticatio
 	NOTE: listeners to localhost.
 	NOTE: This is not treated as a vulnerability, subject to design choices for deployment
 CVE-2019-14510 (An issue was discovered in Kaseya VSA RMM through 9.5.0.22. When using ...)
-	TODO: check
+	NOT-FOR-US: Kaseya VSA RMM
 CVE-2019-14509
 	RESERVED
 CVE-2019-14508
@@ -18778,7 +18778,7 @@ CVE-2019-11169
 CVE-2019-11168
 	RESERVED
 CVE-2019-11167 (Improper file permission in software installer for Intel(R) Smart Conn ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2019-11166 (Improper file permissions in the installer for Intel(R) Easy Streaming ...)
 	NOT-FOR-US: Intel
 CVE-2019-11165
@@ -18872,7 +18872,7 @@ CVE-2019-11122
 CVE-2019-11121
 	RESERVED
 CVE-2019-11120 (Insufficient path checking in the installer for Intel(R) Active System ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2019-11119 (Insufficient session validation in the service API for Intel(R) RWC3 v ...)
 	NOT-FOR-US: Intel
 CVE-2019-11118
@@ -32401,11 +32401,11 @@ CVE-2019-6337
 CVE-2019-6336
 	RESERVED
 CVE-2019-6335 (A potential security vulnerability has been identified with Samsung La ...)
-	TODO: check
+	NOT-FOR-US: Samsung Laser Printers
 CVE-2019-6334
 	RESERVED
 CVE-2019-6333 (A potential security vulnerability has been identified with certain ve ...)
-	TODO: check
+	NOT-FOR-US: HP Touchpoint Analytics
 CVE-2019-6332
 	RESERVED
 CVE-2019-6331
@@ -35669,7 +35669,7 @@ CVE-2019-5055 (An exploitable denial-of-service vulnerability exists in the Host
 CVE-2019-5054 (An exploitable denial-of-service vulnerability exists in the session h ...)
 	NOT-FOR-US: Netgear
 CVE-2019-5053 (An exploitable use-after-free vulnerability exists in the Length parsi ...)
-	TODO: check
+	NOT-FOR-US: NitroPDF
 CVE-2019-5052 (An exploitable integer overflow vulnerability exists when loading a PC ...)
 	{DLA-1865-1 DLA-1861-1}
 	- libsdl2-image 2.0.5+dfsg1-1 (bug #932754)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6e5d33c0724ded96f265a6c2a040026cc0199cd0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6e5d33c0724ded96f265a6c2a040026cc0199cd0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191011/0ed18969/attachment.html>