[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Sat Aug 8 08:06:46 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2636a6c7 by Salvatore Bonaccorso at 2020-08-08T09:06:09+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2446,7 +2446,7 @@ CVE-2020-16170
 CVE-2020-16169
 	RESERVED
 CVE-2020-16168 (Temi firmware 20190419.165201 does not properly verify that the source ...)
-	TODO: check
+	NOT-FOR-US: Temi firmware
 CVE-2020-16167
 	RESERVED
 CVE-2020-16166 (The Linux kernel through 5.7.11 allows remote attackers to make observ ...)
@@ -9472,7 +9472,7 @@ CVE-2020-13378
 CVE-2020-13377
 	RESERVED
 CVE-2020-13376 (SecurEnvoy SecurMail 9.3.503 allows attackers to upload executable fil ...)
-	TODO: check
+	NOT-FOR-US: SecurEnvoy SecurMail
 CVE-2020-13375
 	RESERVED
 CVE-2020-13374
@@ -24797,9 +24797,9 @@ CVE-2020-7825 (A vulnerability exists that could allow the execution of operatin
 CVE-2020-7824
 	RESERVED
 CVE-2020-7823 (DaviewIndy has a Memory corruption vulnerability, triggered when the u ...)
-	TODO: check
+	NOT-FOR-US: DaviewIndy
 CVE-2020-7822 (DaviewIndy has a Heap-based overflow vulnerability, triggered when the ...)
-	TODO: check
+	NOT-FOR-US: DaviewIndy
 CVE-2020-7821 (Nexacro14/17 ExtCommonApiV13 Library under 2019.9.6 version contain a  ...)
 	NOT-FOR-US: Nexacro14/17 ExtCommonApiV13 Library
 CVE-2020-7820 (Nexacro14/17 ExtCommonApiV13 Library under 2019.9.6 version contain a  ...)
@@ -24809,7 +24809,7 @@ CVE-2020-7819
 CVE-2020-7818 (DaviewIndy 8.98.9 and earlier has a Heap-based overflow vulnerability, ...)
 	NOT-FOR-US: Daview
 CVE-2020-7817 (MyBrowserPlus downloads the files needed to run the program through th ...)
-	TODO: check
+	NOT-FOR-US: MyBrowserPlus
 CVE-2020-7816 (A vulnerability in the JPEG image parsing module in DaView Indy, DaVa+ ...)
 	NOT-FOR-US: DaView
 CVE-2020-7815 (XPLATFORM v9.2.260 and eariler versions contain a vulnerability that c ...)
@@ -24823,7 +24823,7 @@ CVE-2020-7812 (Ezhttptrans.ocx ActiveX Control in Kaoni ezHTTPTrans 1.0.0.70 and
 CVE-2020-7811
 	RESERVED
 CVE-2020-7810 (hslogin2.dll ActiveX Control in Groupware contains a vulnerability tha ...)
-	TODO: check
+	NOT-FOR-US: hslogin2.dll ActiveX Control in Groupware
 CVE-2020-7809 (ALSong 3.46 and earlier version contain a Document Object Model (DOM)  ...)
 	NOT-FOR-US: ALSong
 CVE-2020-7808 (In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update processin ...)
@@ -30140,9 +30140,9 @@ CVE-2020-5611 (Cross-site request forgery (CSRF) vulnerability in Social Sharing
 CVE-2020-5610 (Global TechStream (GTS) for TOYOTA dealers version 15.10.032 and earli ...)
 	NOT-FOR-US: Global TechStream (GTS) for TOYOTA dealers
 CVE-2020-5609 (Directory traversal vulnerability in CAMS for HIS CENTUM CS 3000 (incl ...)
-	TODO: check
+	NOT-FOR-US: Yokogawa CAMS
 CVE-2020-5608 (CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000 Small) R3.08.10 t ...)
-	TODO: check
+	NOT-FOR-US: Yokogawa CAMS
 CVE-2020-5607 (Open redirect vulnerability in SHIRASAGI v1.13.1 and earlier allows re ...)
 	NOT-FOR-US: SHIRASAGI
 CVE-2020-5606



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2636a6c703edf1a73b2636c5d5e9a1bf7b891ebd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2636a6c703edf1a73b2636c5d5e9a1bf7b891ebd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200808/8d8362ad/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list