[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
05f8cbd8 by Salvatore Bonaccorso at 2019-09-24T21:20:00Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2019-16756
 CVE-2019-16755
 	RESERVED
 CVE-2019-16754 (RIOT 2019.07 contains a NULL pointer dereference in the MQTT-SN implem ...)
-	TODO: check
+	NOT-FOR-US: RIOT RIOT-OS
 CVE-2019-16753
 	RESERVED
 CVE-2019-16752
@@ -107,7 +107,7 @@ CVE-2019-16708 (ImageMagick 7.0.8-35 has a memory leak in magick/xwindow.c, rela
 CVE-2019-16707 (Hunspell 1.7.0 has an invalid read operation in SuggestMgr::leftcommon ...)
 	TODO: check
 CVE-2019-16706 (kkcms v1.3 has a CSRF vulnerablity that can add an user account via ad ...)
-	TODO: check
+	NOT-FOR-US: kkcms
 CVE-2018-21019 (Home Assistant before 0.67.0 was vulnerable to an information disclosu ...)
 	TODO: check
 CVE-2019-16729 (pam-python before 1.0.7-1 has an issue in regard to the default enviro ...)
@@ -34602,7 +34602,7 @@ CVE-2019-4568
 CVE-2019-4567
 	RESERVED
 CVE-2019-4566 (IBM Security Key Lifecycle Manager 3.0 and 3.0.1 stores user credentia ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4565 (IBM Security Key Lifecycle Manager 3.0 and 3.0.1 does not require that ...)
 	NOT-FOR-US: IBM
 CVE-2019-4564
@@ -34704,7 +34704,7 @@ CVE-2019-4517
 CVE-2019-4516
 	RESERVED
 CVE-2019-4515 (IBM Security Key Lifecycle Manager 3.0 and 3.0.1 is vulnerable to cros ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4514
 	RESERVED
 CVE-2019-4513 (IBM Security Access Manager for Enterprise Single Sign-On 8.2.2 is vul ...)
@@ -36566,7 +36566,7 @@ CVE-2019-3728
 CVE-2019-3727 (Dell EMC RecoverPoint versions prior to 5.1.3 and RecoverPoint for VMs ...)
 	NOT-FOR-US: Dell EMC RecoverPoint
 CVE-2019-3726 (An Uncontrolled Search Path Vulnerability is applicable to the followi ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2019-3725 (RSA Netwitness Platform versions prior to 11.2.1.1 and RSA Security An ...)
 	NOT-FOR-US: RSA Netwitness Platform
 CVE-2019-3724 (RSA Netwitness Platform versions prior to 11.2.1.1 is vulnerable to an ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/05f8cbd81c93cae7b5ad345bb09f7fa2a91915a6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/05f8cbd81c93cae7b5ad345bb09f7fa2a91915a6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190924/50859eed/attachment.html>