[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Aug 14 13:28:01 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2b45b697 by Salvatore Bonaccorso at 2020-08-14T14:27:23+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -26226,11 +26226,11 @@ CVE-2020-12303
 CVE-2020-12302
 	RESERVED
 CVE-2020-12301 (Improper initialization in BIOS firmware for Intel(R) Server Board Fam ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-12300 (Uninitialized pointer in BIOS firmware for Intel(R) Server Board Famil ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-12299 (Improper input validation in BIOS firmware for Intel(R) Server Board F ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-12298
 	RESERVED
 CVE-2020-12297
@@ -36628,6 +36628,7 @@ CVE-2020-8744
 CVE-2020-8743 (Improper permissions in the installer for the Intel(R) Mailbox Interfa ...)
 	TODO: check
 CVE-2020-8742 (Improper input validation in the firmware for Intel(R) NUCs may allow  ...)
+	NOT-FOR-US: Intel
 	TODO: check
 CVE-2020-8741
 	RESERVED
@@ -36645,16 +36646,17 @@ CVE-2020-8735
 	RESERVED
 CVE-2020-8734
 	RESERVED
+	NOT-FOR-US: Intel
 CVE-2020-8733 (Improper buffer restrictions in the firmware for Intel(R) Server Board ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8732 (Heap-based buffer overflow in the firmware for some Intel(R) Server Bo ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8731 (Incorrect execution-assigned permissions in the file system for some I ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8730 (Heap-based overflow for some Intel(R) Server Boards, Server Systems an ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8729 (Buffer copy without checking size of input for some Intel(R) Server Bo ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8728
 	RESERVED
 CVE-2020-8727
@@ -36666,39 +36668,39 @@ CVE-2020-8725
 CVE-2020-8724
 	RESERVED
 CVE-2020-8723 (Cross-site scripting for some Intel(R) Server Boards, Server Systems a ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8722 (Buffer overflow in a subsystem for some Intel(R) Server Boards, Server ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8721 (Improper input validation for some Intel(R) Server Boards, Server Syst ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8720 (Buffer overflow in a subsystem for some Intel(R) Server Boards, Server ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8719 (Buffer overflow in subsystem for some Intel(R) Server Boards, Server S ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8718 (Buffer overflow in a subsystem for some Intel(R) Server Boards, Server ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8717 (Improper input validation in a subsystem for some Intel Server Boards, ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8716 (Improper access control for some Intel(R) Server Boards, Server System ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8715 (Invalid pointer for some Intel(R) Server Boards, Server Systems and Co ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8714 (Improper authentication for some Intel(R) Server Boards, Server System ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8713 (Improper authentication for some Intel(R) Server Boards, Server System ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8712 (Buffer overflow in a verification process for some Intel(R) Server Boa ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8711 (Improper access control in the bootloader for some Intel(R) Server Boa ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8710 (Buffer overflow in the bootloader for some Intel(R) Server Boards, Ser ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8709 (Improper authentication in socket services for some Intel(R) Server Bo ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8708 (Improper authentication for some Intel(R) Server Boards, Server System ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8707 (Buffer overflow in daemon for some Intel(R) Server Boards, Server Syst ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2020-8706 (Buffer overflow in a daemon for some Intel(R) Server Boards, Server Sy ...)
 	TODO: check
 CVE-2020-8705
@@ -36743,6 +36745,7 @@ CVE-2020-8687 (Uncontrolled search path in the installer for Intel(R) RSTe Softw
 CVE-2020-8686
 	RESERVED
 CVE-2020-8685 (Improper authentication in subsystem for Intel (R) LED Manager for NUC ...)
+	NOT-FOR-US: Intel
 	TODO: check
 CVE-2020-8684 (Improper access control in firmware for Intel(R) PAC with Arria(R) 10  ...)
 	TODO: check



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b45b697e1c8ef23bf11fa409c2a9189d11f7de5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b45b697e1c8ef23bf11fa409c2a9189d11f7de5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200814/e0a1ab24/attachment.html>


More information about the debian-security-tracker-commits mailing list