[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Oct 18 21:23:59 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cab61a94 by Salvatore Bonaccorso at 2019-10-18T20:23:26Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2895,7 +2895,7 @@ CVE-2019-17395 (In the Rapid Gator application 0.7.1 for Android, the username a
 CVE-2019-17394 (In the Seesaw Parent and Family application 6.2.5 for Android, the use ...)
 	NOT-FOR-US: Seesaw Parent and Family application
 CVE-2019-17393 (The Customer's Tomedo Server in Version 1.7.3 communicates to the Vend ...)
-	TODO: check
+	NOT-FOR-US: Tomedo Server
 CVE-2019-17392
 	RESERVED
 CVE-2019-17391
@@ -2952,7 +2952,7 @@ CVE-2019-17369 (OTCMS v3.85 has CSRF in the admin/member_deal.php Admin Panel pa
 CVE-2019-17368 (S-CMS v1.5 has XSS in tpl.php via the member/member_login.php from par ...)
 	NOT-FOR-US: S-CMS
 CVE-2019-17367 (OpenWRT firmware version 18.06.4 is vulnerable to CSRF via wireless/ra ...)
-	TODO: check
+	NOT-FOR-US: OpenWRT
 CVE-2019-17366 (Citrix Application Delivery Management (ADM) 12.1 before build 54.13 h ...)
 	NOT-FOR-US: Citrix
 CVE-2019-17365 (Nix through 2.3 allows local users to gain access to an arbitrary user ...)
@@ -3272,7 +3272,7 @@ CVE-2019-17209
 CVE-2019-17208
 	RESERVED
 CVE-2019-17207 (A reflected XSS vulnerability was found in includes/admin/table-printe ...)
-	TODO: check
+	NOT-FOR-US: broken-link-checker (aka Broken Link Checker) plugin for WordPress
 CVE-2019-17206 (Uncontrolled deserialization of a pickled object in models.py in Frost ...)
 	NOT-FOR-US: Frost Ming rediswrapper
 CVE-2019-17205 (TeamPass 2.1.27.36 allows Stored XSS by placing a payload in the usern ...)
@@ -3931,7 +3931,7 @@ CVE-2019-16928 (Exim 4.92 through 4.92.2 allows remote code execution, a differe
 	NOTE: https://bugs.exim.org/show_bug.cgi?id=2449
 	NOTE: https://git.exim.org/exim.git/commit/478effbfd9c3cc5a627fc671d4bf94d13670d65f
 CVE-2019-16919 (Harbor API has a Broken Access Control vulnerability. The vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Harbor
 CVE-2019-16918
 	RESERVED
 CVE-2019-16917 (WiKID Enterprise 2FA (two factor authentication) Enterprise Server thr ...)
@@ -6745,9 +6745,9 @@ CVE-2019-15902 (A backporting error was discovered in the Linux stable/longterm
 	[jessie] - linux <not-affected> (Bug never introduced)
 	NOTE: https://grsecurity.net/teardown_of_a_failed_linux_lts_spectre_fix.php
 CVE-2019-15901 (An issue was discovered in slicer69 doas before 6.2 on certain platfor ...)
-	TODO: check
+	NOT-FOR-US: slicer69 doas
 CVE-2019-15900 (An issue was discovered in slicer69 doas before 6.2 on certain platfor ...)
-	TODO: check
+	NOT-FOR-US: slicer69 doas
 CVE-2019-15899
 	RESERVED
 CVE-2019-15898 (Nagios Log Server before 2.0.8 allows Reflected XSS via the username o ...)
@@ -14947,7 +14947,7 @@ CVE-2019-13547
 CVE-2019-13546
 	RESERVED
 CVE-2019-13545 (In Horner Automation Cscape 9.90 and prior, improper validation of dat ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation Cscape
 CVE-2019-13544 (Delta Electronics TPEditor, Versions 1.94 and prior. Multiple out-of-b ...)
 	NOT-FOR-US: Delta Electronics TPEditor
 CVE-2019-13543
@@ -14955,7 +14955,7 @@ CVE-2019-13543
 CVE-2019-13542 (3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server, all version ...)
 	NOT-FOR-US: 3S-Smart
 CVE-2019-13541 (In Horner Automation Cscape 9.90 and prior, an improper input validati ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation Cscape
 CVE-2019-13540 (Delta Electronics TPEditor, Versions 1.94 and prior. Multiple stack-ba ...)
 	NOT-FOR-US: Delta Electronics TPEditor
 CVE-2019-13539



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cab61a94dc5e829dc3de1fe66e61d9bcb230d78d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cab61a94dc5e829dc3de1fe66e61d9bcb230d78d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191018/3bb08e35/attachment.html>

More information about the debian-security-tracker-commits mailing list