[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Tue Apr 7 09:17:10 BST 2020 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dcabbea6 by Moritz Muehlenhoff at 2020-04-07T10:16:54+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,43 +1,43 @@
 CVE-2020-11599 (An issue was discovered in CIPPlanner CIPAce 6.80 Build 2016031401. Ge ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11598 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Upl ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11597 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11596 (A Directory Traversal issue was discovered in CIPPlanner CIPAce 9.1 Bu ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11595 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11594 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11593 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11592 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11591 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11590 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11589 (An Insecure Direct Object Reference issue was discovered in CIPPlanner ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11588 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11587 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An  ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11586 (An XXE issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. ...)
-	TODO: check
+	NOT-FOR-US: CIPPlanner
 CVE-2020-11585 (There is an information disclosure issue in DNN (formerly DotNetNuke)  ...)
-	TODO: check
+	NOT-FOR-US: DNN (formerly DotNetNuke)
 CVE-2020-11584
 	RESERVED
 CVE-2020-11583
 	RESERVED
 CVE-2020-11582 (An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) thr ...)
-	TODO: check
+	NOT-FOR-US: Pulse Secure Pulse Connect Secure
 CVE-2020-11581 (An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) thr ...)
-	TODO: check
+	NOT-FOR-US: Pulse Secure Pulse Connect Secure
 CVE-2020-11580 (An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) thr ...)
-	TODO: check
+	NOT-FOR-US: Pulse Secure Pulse Connect Secure
 CVE-2020-11579
 	RESERVED
 CVE-2020-11578
@@ -3137,11 +3137,11 @@ CVE-2020-10268
 CVE-2020-10267 (Universal Robots control box CB 3.1 across firmware versions (tested o ...)
 	NOT-FOR-US: Universal Robots control box CB
 CVE-2020-10266 (UR+ (Universal Robots+) is a platform of hardware and software compone ...)
-	TODO: check
+	NOT-FOR-US: Universal Robots+
 CVE-2020-10265 (Universal Robots Robot Controllers Version CB2 SW Version 1.4 upwards, ...)
-	TODO: check
+	NOT-FOR-US: Universal Robots+
 CVE-2020-10264 (CB3 SW Version 3.3 and upwards, e-series SW Version 5.0 and upwards al ...)
-	TODO: check
+	NOT-FOR-US: CB3 SW
 CVE-2019-20509
 	REJECTED
 CVE-2020-10263
@@ -8287,7 +8287,7 @@ CVE-2020-8006
 CVE-2020-8005
 	RESERVED
 CVE-2020-8004 (STMicroelectronics STM32F1 devices have Incorrect Access Control. ...)
-	TODO: check
+	NOT-FOR-US: STMicroelectronics STM32F1 devices
 CVE-2019-20433 (libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a s ...)
 	- aspell 0.60.7-3 (bug #935128)
 	[buster] - aspell <no-dsa> (Minor issue)
@@ -9229,7 +9229,7 @@ CVE-2020-7624 (effect through 1.0.4 is vulnerable to Command Injection. It allow
 CVE-2020-7623 (jscover through 1.0.0 is vulnerable to Command Injection. It allows ex ...)
 	NOT-FOR-US: Node jscover
 CVE-2020-7622 (All versions of Jooby before 2.2.1 are vulnerable to HTTP Response Spl ...)
-	TODO: check
+	NOT-FOR-US: Jooby
 CVE-2020-7621 (strong-nginx-controller through 1.0.2 is vulnerable to Command Injecti ...)
 	NOT-FOR-US: Node strong-nginx-controller
 CVE-2020-7620 (pomelo-monitor through 0.3.7 is vulnerable to Command Injection.It all ...)
@@ -13355,7 +13355,7 @@ CVE-2020-5834
 CVE-2020-5833
 	RESERVED
 CVE-2020-5832 (Symantec Data Center Security Manager Component, prior to 6.8.2 (aka 6 ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2020-5831 (Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, ma ...)
 	NOT-FOR-US: Symantec Endpoint Protection Manager (SEPM)
 CVE-2020-5830 (Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, ma ...)
@@ -24636,7 +24636,7 @@ CVE-2020-1729
 	RESERVED
 	NOT-FOR-US: SmallRye Config
 CVE-2020-1728 (A vulnerability was found in all versions of Keycloak where, the pages ...)
-	TODO: check
+	NOT-FOR-US: Keycloak
 CVE-2020-1727
 	RESERVED
 CVE-2020-1726 (A flaw was discovered in Podman where it incorrectly allows containers ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dcabbea6a5d2e83ba531e2b9e1d39c2367fee94b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dcabbea6a5d2e83ba531e2b9e1d39c2367fee94b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200407/3f538e8a/attachment.html>

More information about the debian-security-tracker-commits mailing list