[Git][security-tracker-team/security-tracker][master] Process some new NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
36881a9a by Salvatore Bonaccorso at 2020-04-23T10:29:36+02:00
Process some new NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,15 +3,15 @@ CVE-2020-12079 (Beaker before 0.8.9 allows a sandbox escape, enabling system acc
 CVE-2020-12078
 	RESERVED
 CVE-2020-12077 (The mappress-google-maps-for-wordpress plugin before 2.53.9 for WordPr ...)
-	TODO: check
+	NOT-FOR-US: mappress-google-maps-for-wordpress plugin for WordPress
 CVE-2020-12076 (The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPr ...)
-	TODO: check
+	NOT-FOR-US: data-tables-generator-by-supsystic plugin for WordPress
 CVE-2020-12075 (The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPr ...)
-	TODO: check
+	NOT-FOR-US: data-tables-generator-by-supsystic plugin for WordPress
 CVE-2020-12074 (The users-customers-import-export-for-wp-woocommerce plugin before 1.3 ...)
-	TODO: check
+	NOT-FOR-US: users-customers-import-export-for-wp-woocommerce plugin for WordPress
 CVE-2020-12073 (The responsive-add-ons plugin before 2.2.7 for WordPress has incorrect ...)
-	TODO: check
+	NOT-FOR-US: responsive-add-ons plugin for WordPress
 CVE-2020-12072
 	RESERVED
 CVE-2020-12071 (Anchor 0.12.7 allows admins to cause XSS via crafted post content. ...)
@@ -470,9 +470,9 @@ CVE-2018-21153
 CVE-2018-21152
 	RESERVED
 CVE-2018-21151 (Certain NETGEAR devices are affected by a buffer overflow by an authen ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21150 (Certain NETGEAR devices are affected by a stack-based buffer overflow  ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21149
 	RESERVED
 CVE-2018-21148 (Certain NETGEAR devices are affected by a stack-based buffer overflow  ...)
@@ -3773,9 +3773,9 @@ CVE-2020-10909 (This vulnerability allows remote attackers to execute arbitrary
 CVE-2020-10908 (This vulnerability allows remote attackers to execute arbitrary code o ...)
 	TODO: check
 CVE-2020-10907 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2020-10906 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2020-10905 (This vulnerability allows remote attackers to disclose sensitive infor ...)
 	TODO: check
 CVE-2020-10904 (This vulnerability allows remote attackers to execute arbitrary code o ...)
@@ -3787,9 +3787,9 @@ CVE-2020-10902 (This vulnerability allows remote attackers to execute arbitrary
 CVE-2020-10901 (This vulnerability allows remote attackers to disclose sensitive infor ...)
 	TODO: check
 CVE-2020-10900 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2020-10899 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Foxit Reader
 CVE-2020-10898 (This vulnerability allows remote attackers to execute arbitrary code o ...)
 	TODO: check
 CVE-2020-10897 (This vulnerability allows remote attackers to execute arbitrary code o ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/36881a9aa92ebb6364d43d8289f9e7e5f31d0760

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/36881a9aa92ebb6364d43d8289f9e7e5f31d0760
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200423/77775666/attachment.html>