[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
681080c0 by Moritz Muehlenhoff at 2019-09-12T20:20:00Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25,7 +25,7 @@ CVE-2019-16263
 CVE-2019-16262
 	RESERVED
 CVE-2019-16261 (Tripp Lite PDUMH15AT 12.04.0053 devices allow unauthenticated POST req ...)
-	TODO: check
+	NOT-FOR-US: Tripp Lite PDUMH15AT
 CVE-2019-16260
 	RESERVED
 CVE-2019-16259
@@ -33,9 +33,9 @@ CVE-2019-16259
 CVE-2019-16258
 	RESERVED
 CVE-2019-16257 (Some Motorola devices include the SIMalliance Toolbox Browser (aka S at T ...)
-	TODO: check
+	NOT-FOR-US: SIMalliance Toolbox Browser
 CVE-2019-16256 (Some Samsung devices include the SIMalliance Toolbox Browser (aka S at T  ...)
-	TODO: check
+	NOT-FOR-US: SIMalliance Toolbox Browser
 CVE-2017-18633
 	RESERVED
 CVE-2017-18632
@@ -158,7 +158,7 @@ CVE-2019-16275 (hostapd before 2.10 and wpa_supplicant before 2.10 allow an inco
 	NOTE: https://www.openwall.com/lists/oss-security/2019/09/11/7
 	NOTE: https://w1.fi/security/2019-7/
 CVE-2019-16238 (Afterlogic Aurora through 8.3.9-build-a3 has XSS that can be leveraged ...)
-	TODO: check
+	NOT-FOR-US: Afterlogic Aurora
 CVE-2019-16237 (Dino before 2019-09-10 does not properly check the source of an MAM me ...)
 	- dino-im 0.0.git20190911.2a70a4e-1
 	NOTE: https://github.com/dino/dino/commit/307f16cc86dd2b95aa02ab8a85110e4a2d5e7363
@@ -17337,23 +17337,23 @@ CVE-2019-10402
 CVE-2019-10401
 	RESERVED
 CVE-2019-10400 (A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62  ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10399 (A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62  ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10398 (Jenkins Beaker Builder Plugin 1.9 and earlier stored credentials unenc ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10397 (Jenkins Aqua Security Serverless Scanner Plugin 1.0.4 and earlier tran ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10396 (Jenkins Dashboard View Plugin 2.11 and earlier did not escape build de ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10395 (Jenkins Build Environment Plugin 1.6 and earlier did not escape variab ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10394 (A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62  ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10393 (A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62  ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10392 (Jenkins Git Client Plugin 2.8.4 and earlier did not properly restrict  ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2019-10391 (Jenkins IBM Application Security on Cloud Plugin 1.2.4 and earlier tra ...)
 	NOT-FOR-US: IBM
 CVE-2019-10390 (A sandbox bypass vulnerability in Jenkins Splunk Plugin 1.7.4 and earl ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/681080c05f8f44ab970ebd0cd5bb1238369fd48c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/681080c05f8f44ab970ebd0cd5bb1238369fd48c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190912/5a131403/attachment-0001.html>