[Git][security-tracker-team/security-tracker][master] Process many NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Apr 23 21:25:21 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c374bdba by Salvatore Bonaccorso at 2020-04-23T22:24:54+02:00
Process many NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -130,7 +130,7 @@ CVE-2020-12056
 CVE-2020-12055
 	RESERVED
 CVE-2020-12054 (The Catch Breadcrumb plugin before 1.5.4 for WordPress allows Reflecte ...)
-	TODO: check
+	NOT-FOR-US: Catch Breadcrumb plugin for WordPress
 CVE-2020-12053
 	RESERVED
 CVE-2020-12052
@@ -637,19 +637,19 @@ CVE-2018-21109
 CVE-2018-21108
 	RESERVED
 CVE-2018-21107 (NETGEAR R7800 devices before 1.0.2.60 are affected by command injectio ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21106 (NETGEAR R7800 devices before 1.0.2.60 are affected by command injectio ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21105 (NETGEAR R7800 devices before 1.0.2.60 are affected by command injectio ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21104 (NETGEAR R7800 devices before 1.0.2.60 are affected by command injectio ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21103 (NETGEAR R7800 devices before 1.0.2.60 are affected by command injectio ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21102 (NETGEAR ReadyNAS devices before 6.9.3 are affected by CSRF. ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21101 (NETGEAR R7800 devices before 1.0.2.60 are affected by command injectio ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2018-21100
 	RESERVED
 CVE-2018-21099
@@ -869,45 +869,45 @@ CVE-2017-18753
 CVE-2017-18752 (Certain NETGEAR devices are affected by an attacker's ability to read  ...)
 	NOT-FOR-US: Netgear
 CVE-2017-18751 (Certain NETGEAR devices are affected by a stack-based buffer overflow  ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18750 (Certain NETGEAR devices are affected by a stack-based buffer overflow  ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18749 (Certain NETGEAR devices are affected by CSRF. This affects JNR1010v2 b ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18748 (Certain NETGEAR devices are affected by incorrect configuration of sec ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18747 (Certain NETGEAR devices are affected by incorrect configuration of sec ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18746 (Certain NETGEAR devices are affected by incorrect configuration of sec ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18745 (Certain NETGEAR devices are affected by stored XSS. This affects R6400 ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18744 (Certain NETGEAR devices are affected by a buffer overflow by an unauth ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18743 (Certain NETGEAR devices are affected by authentication bypass. This af ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18742 (Certain NETGEAR devices are affected by CSRF. This affects JR6150 befo ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18741 (Certain NETGEAR devices are affected by incorrect configuration of sec ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18740 (Certain NETGEAR devices are affected by incorrect configuration of sec ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18739 (Certain NETGEAR devices are affected by a buffer overflow by an unauth ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18738 (Certain NETGEAR devices are affected by a stack-based buffer overflow  ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18737 (Certain NETGEAR devices are affected by command injection by an unauth ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18736 (Certain NETGEAR devices are affected by command injection by an unauth ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18735 (Certain NETGEAR devices are affected by command injection by an unauth ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18734 (Certain NETGEAR devices are affected by command injection by an unauth ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18733 (Certain NETGEAR devices are affected by authentication bypass. This af ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18732 (Certain NETGEAR devices are affected by authentication bypass. This af ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18731
 	RESERVED
 CVE-2017-18730
@@ -19375,7 +19375,7 @@ CVE-2020-4417
 CVE-2020-4416
 	RESERVED
 CVE-2020-4415 (IBM Spectrum Protect 7.1 and 8.1 server is vulnerable to a stack-based ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4414
 	RESERVED
 CVE-2020-4413
@@ -19499,7 +19499,7 @@ CVE-2020-4355
 CVE-2020-4354
 	RESERVED
 CVE-2020-4353 (IBM MaaS360 6.82 could allow a user with pysical access to the device  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4352
 	RESERVED
 CVE-2020-4351
@@ -19583,7 +19583,7 @@ CVE-2020-4313
 CVE-2020-4312
 	RESERVED
 CVE-2020-4311 (IBM Tivoli Monitoring 6.3.0 could allow a local attacker to execute ar ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4310
 	RESERVED
 CVE-2020-4309 (IBM Content Navigator 3.0CD could disclose sensitive information to an ...)
@@ -19801,7 +19801,7 @@ CVE-2020-4204 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server)
 CVE-2020-4203 (IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could potentially  ...)
 	NOT-FOR-US: IBM
 CVE-2020-4202 (IBM UrbanCode Deploy (UCD) 7.0.3.0 and 7.0.4.0 could allow an authenti ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4201
 	RESERVED
 CVE-2020-4200 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5 ...)
@@ -73495,7 +73495,7 @@ CVE-2019-4737 (IBM DOORS Next Generation (DNG/RRC) 6.0.2. 6.0.6, and 6.0.61 is v
 CVE-2019-4736 (IBM Financial Transaction Manager 3.0 is vulnerable to cross-site requ ...)
 	NOT-FOR-US: IBM
 CVE-2019-4735 (IBM MaaS360 3.96.62 for iOS could allow an attacker with physical acce ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4734
 	RESERVED
 CVE-2019-4733
@@ -73629,7 +73629,7 @@ CVE-2019-4670 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could all
 CVE-2019-4669 (IBM Business Process Manager 8.5.7.0 through 8.5.7.0 2017.06, 8.6.0.0  ...)
 	NOT-FOR-US: IBM
 CVE-2019-4668 (IBM UrbanCode Deploy (UCD) 7.0.4.0 stores user credentials in plain in ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4667
 	RESERVED
 CVE-2019-4666 (IBM UrbanCode Deploy (UCD) 7.0.3 and IBM UrbanCode Build 6.1.5 could a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c374bdba8045ffb94b36e242260864a4ab71b215

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c374bdba8045ffb94b36e242260864a4ab71b215
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200423/db64918f/attachment.html>

More information about the debian-security-tracker-commits mailing list