[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8567d6bb by Salvatore Bonaccorso at 2019-09-16T20:18:17Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2019-16373
 CVE-2019-16372
 	RESERVED
 CVE-2019-16371 (LogMeIn LastPass before 4.33.0 allows attackers to construct a crafted ...)
-	TODO: check
+	NOT-FOR-US: LogMeIn LastPass
 CVE-2019-16370 (The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algori ...)
 	TODO: check
 CVE-2019-16369
@@ -37,11 +37,11 @@ CVE-2019-16357
 CVE-2019-16356
 	RESERVED
 CVE-2019-16355 (The File Session Manager in Beego 1.10.0 allows local users to read se ...)
-	TODO: check
+	NOT-FOR-US: Beego
 CVE-2019-16354 (The File Session Manager in Beego 1.10.0 allows local users to read se ...)
-	TODO: check
+	NOT-FOR-US: Beego
 CVE-2019-16353 (Emerson GE Automation Proficy Machine Edition 8.0 allows an access vio ...)
-	TODO: check
+	NOT-FOR-US: Emerson GE Automation Proficy Machine Edition
 CVE-2019-16352 (ffjpeg before 2019-08-21 has a heap-based buffer overflow in jfif_load ...)
 	TODO: check
 CVE-2019-16351 (ffjpeg before 2019-08-18 has a NULL pointer dereference in huffman_dec ...)
@@ -49,13 +49,13 @@ CVE-2019-16351 (ffjpeg before 2019-08-18 has a NULL pointer dereference in huffm
 CVE-2019-16350 (ffjpeg before 2019-08-18 has a NULL pointer dereference in idct2d8x8() ...)
 	TODO: check
 CVE-2019-16349 (Bento4 1.5.1-628 has a NULL pointer dereference in AP4_ByteStream::Rea ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2019-16348 (marc-q libwav through 2019-08-15 has a NULL pointer dereference in gai ...)
-	TODO: check
+	NOT-FOR-US: libwav
 CVE-2019-16347 (ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngifl ...)
-	TODO: check
+	NOT-FOR-US: ngiflib
 CVE-2019-16346 (ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngifli ...)
-	TODO: check
+	NOT-FOR-US: ngiflib
 CVE-2019-16345
 	RESERVED
 CVE-2019-16344
@@ -238,7 +238,7 @@ CVE-2016-10959 (The estatik plugin before 2.3.1 for WordPress has authenticated
 CVE-2016-10958 (The estatik plugin before 2.3.0 for WordPress has unauthenticated arbi ...)
 	NOT-FOR-US: estatik plugin for WordPress
 CVE-2016-10957 (The Akal theme through 2016-08-22 for WordPress has XSS via the framew ...)
-	TODO: check
+	NOT-FOR-US: Akal theme for WordPress
 CVE-2016-10956 (The mail-masta plugin 1.0 for WordPress has local file inclusion in co ...)
 	NOT-FOR-US: mail-masta plugin for WordPress
 CVE-2010-5333 (The web server in Integard Pro and Home before 2.0.0.9037 and 2.2.x be ...)
@@ -274,7 +274,7 @@ CVE-2019-16266
 CVE-2019-16265
 	RESERVED
 CVE-2019-16264 (In Escuela de Gestion Publica Plurinacional (EGPP) Sistema Integrado d ...)
-	TODO: check
+	NOT-FOR-US: Escuela de Gestion Publica Plurinacional (EGPP) Sistema Integrado de Gestion Academica (GESAC)
 CVE-2019-16263
 	RESERVED
 CVE-2019-16262
@@ -880,7 +880,7 @@ CVE-2019-16058 (An issue was discovered in the pam_p11 component 0.2.0 and 0.3.0
 	- pam-p11 <unfixed> (bug #939664)
 	NOTE: https://github.com/OpenSC/pam_p11/commit/d150b60e1e14c261b113f55681419ad1dfa8a76c
 CVE-2019-16057 (The login_mgr.cgi script in D-Link DNS-320 through 2.05.B10 is vulnera ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2019-16056 (An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3 ...)
 	- python3.8 3.8.0~b4-1
 	- python3.7 <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8567d6bb45651c24d1cca33d5b9a50baa2e42448

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8567d6bb45651c24d1cca33d5b9a50baa2e42448
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190916/e180f6a4/attachment.html>