[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Sep 19 21:14:48 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
17ec9cb9 by Salvatore Bonaccorso at 2019-09-19T20:14:16Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2019-16525 (An XSS issue was discovered in the checklist plugin before 1.1.9 for W ...)
-	TODO: check
+	NOT-FOR-US: checklist plugin for WordPress
 CVE-2019-16524
 	RESERVED
 CVE-2019-16523
@@ -296,9 +296,9 @@ CVE-2019-16380
 CVE-2019-16379
 	RESERVED
 CVE-2016-10995 (The Tevolution plugin before 2.3.0 for WordPress has arbitrary file up ...)
-	TODO: check
+	NOT-FOR-US: Tevolution plugin for WordPress
 CVE-2016-10994 (The Truemag theme 2016 Q2 for WordPress has XSS via the s parameter. ...)
-	TODO: check
+	NOT-FOR-US: Truemag theme for WordPress
 CVE-2016-10993 (The ScoreMe theme through 2016-04-01 for WordPress has XSS via the s p ...)
 	TODO: check
 CVE-2016-10992 (The music-store plugin before 1.0.43 for WordPress has XSS via the wp- ...)
@@ -14780,13 +14780,13 @@ CVE-2019-11666 (Insecure deserialization of untrusted data in Micro Focus Servic
 CVE-2019-11665 (Data exposure in Micro Focus Service Manager product versions 9.30, 9. ...)
 	NOT-FOR-US: Micro Focus
 CVE-2019-11664 (Clear text password in browser in Micro Focus Service Manager product  ...)
-	TODO: check
+	NOT-FOR-US: Micro Focus
 CVE-2019-11663 (Clear text credentials are used to access managers app in Tomcat in Mi ...)
-	TODO: check
+	NOT-FOR-US: Micro Focus
 CVE-2019-11662 (Class and method names in error message in Micro Focus Service Manager ...)
-	TODO: check
+	NOT-FOR-US: Micro Focus
 CVE-2019-11661 (Allow changes to some table by non-SysAdmin in Micro Focus Service Man ...)
-	TODO: check
+	NOT-FOR-US: Micro Focus
 CVE-2019-11660 (Privileges manipulation in Micro Focus Data Protector, versions 10.00, ...)
 	NOT-FOR-US: Micro Focus
 CVE-2019-11659
@@ -95602,7 +95602,7 @@ CVE-2018-1849
 CVE-2018-1848 (IBM Business Automation Workflow 18.0.0.0 and 18.0.0.1 is vulnerable t ...)
 	NOT-FOR-US: IBM
 CVE-2018-1847 (IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) v2.0.0 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1846 (IBM Rational Engineering Lifecycle Manager 5.0 through 5.0.2 and 6.0 t ...)
 	NOT-FOR-US: IBM
 CVE-2018-1845 (IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable t ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/17ec9cb90c5b3058e1c20e245e79b3c57cf03622

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/17ec9cb90c5b3058e1c20e245e79b3c57cf03622
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190919/631655bb/attachment.html>

More information about the debian-security-tracker-commits mailing list