[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Apr 28 21:15:24 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d4165161 by Salvatore Bonaccorso at 2020-04-28T22:15:12+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -295,17 +295,17 @@ CVE-2020-12285
 CVE-2020-12284 (cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.2.2 has a ...)
 	TODO: check
 CVE-2017-18863 (Certain NETGEAR devices are affected by command execution via a PHP fo ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18862 (Certain NETGEAR devices are affected by authentication bypass. This af ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18861 (Certain NETGEAR devices are affected by CSRF. This affects ReadyNAS Su ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18860
 	RESERVED
 CVE-2017-18859 (Certain NETGEAR devices are affected by slowdown/stoppage. This affect ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18858 (Certain NETGEAR devices are affected by command execution. This affect ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2017-18857 (The NETGEAR Insight application before 2.42 for Android and iOS is aff ...)
 	TODO: check
 CVE-2017-18856
@@ -317,19 +317,19 @@ CVE-2017-18854
 CVE-2017-18853
 	RESERVED
 CVE-2016-11060 (Certain NETGEAR devices are affected by insecure renegotiation. This a ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2016-11059 (Certain NETGEAR devices are affected by password exposure. This affect ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2016-11058 (The NETGEAR genie application before 2.4.34 for Android is affected by ...)
 	TODO: check
 CVE-2016-11057 (Certain NETGEAR devices are affected by mishandling of repeated URL ca ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2016-11056 (Certain NETGEAR devices are affected by anonymous root access. This af ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2016-11055 (Certain NETGEAR devices are affected by CSRF. This affects CM400 befor ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2016-11054 (NETGEAR DGN2200v4 devices before 2017-01-06 are affected by command ex ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2020-12283
 	RESERVED
 CVE-2020-12282
@@ -20348,7 +20348,7 @@ CVE-2020-4331
 CVE-2020-4330
 	RESERVED
 CVE-2020-4329 (IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty 17.0.0 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4328
 	RESERVED
 CVE-2020-4327



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d416516118a5216fcb11a0f5a41c738e49c8d50c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d416516118a5216fcb11a0f5a41c738e49c8d50c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200428/e2cb1514/attachment.html>

More information about the debian-security-tracker-commits mailing list