[Git][security-tracker-team/security-tracker][master] Process several NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Aug 26 21:29:51 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a406f5a6 by Salvatore Bonaccorso at 2020-08-26T22:29:18+02:00
Process several NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -30314,7 +30314,7 @@ CVE-2020-11499 (Firmware Analysis and Comparison Tool (FACT) 3 has Stored XSS wh
 CVE-2020-11498 (Slack Nebula through 1.1.0 contains a relative path vulnerability that ...)
 	NOT-FOR-US: Slack Nebula
 CVE-2020-11497 (An issue was discovered in the NAB Transact extension 2.1.0 for the Wo ...)
-	TODO: check
+	NOT-FOR-US: NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress
 CVE-2020-11496
 	RESERVED
 CVE-2020-11495
@@ -44588,39 +44588,39 @@ CVE-2020-5930
 CVE-2020-5929
 	RESERVED
 CVE-2020-5928 (In versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.6, 13.1.0- ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5927 (In versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, and 14.1.0-14.1.2.6, BIG ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5926 (In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, and 14.1.0-14.1.2 ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5925 (In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.6,  ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5924 (In BIG-IP APM versions 12.1.0-12.1.5.1 and 11.6.1-11.6.5.2, RADIUS aut ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5923 (In BIG-IP versions 15.0.0-15.1.0.4, 14.1.0-14.1.2.6, 13.1.0-13.1.3.3,  ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5922 (In BIG-IP versions 15.0.0-15.1.0.4, 14.1.0-14.1.2.6, 13.1.0-13.1.3.3,  ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5921 (in BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.6,  ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5920 (In versions 15.0.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, 12.1.0- ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5919 (In versions 15.1.0-15.1.0.4, rendering of certain session variables by ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5918 (In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3,  ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5917 (In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3,  ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5916 (In BIG-IP versions 15.1.0-15.1.0.4 and 15.0.0-15.0.1.3 the Certificate ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5915 (In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3,  ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5914 (In BIG-IP ASM versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2 ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5913 (In versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0- ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5912 (In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3,  ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2020-5911 (In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller  ...)
 	NOT-FOR-US: NGINX Controller
 CVE-2020-5910 (In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic  ...)
@@ -102960,7 +102960,7 @@ CVE-2019-4715 (IBM Spectrum Scale 4.2 and 5.0 could allow a remote authenticated
 CVE-2019-4714
 	RESERVED
 CVE-2019-4713 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 could allow a remo ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4712
 	RESERVED
 CVE-2019-4711
@@ -102984,37 +102984,37 @@ CVE-2019-4703 (IBM Spectrum Protect Plus 10.1.0 and 10.5.0, when protecting Micr
 CVE-2019-4702
 	RESERVED
 CVE-2019-4701 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 is deployed with a ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4700
 	RESERVED
 CVE-2019-4699 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 generates an error ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4698 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 does not require t ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4697 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 stores user creden ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4696
 	RESERVED
 CVE-2019-4695
 	RESERVED
 CVE-2019-4694 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 contains hard-code ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4693 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 stores user creden ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4692 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 discloses sensitiv ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4691 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 is vulnerable to c ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4690
 	RESERVED
 CVE-2019-4689 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 could allow a remo ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4688 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 does not set the s ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4687
 	RESERVED
 CVE-2019-4686 (IBM Security Guardium Data Encryption (GDE) 3.0.0.2 does not set the s ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4685
 	RESERVED
 CVE-2019-4684
@@ -166064,7 +166064,7 @@ CVE-2018-1503 (IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow a remotely authent
 CVE-2018-1502 (IBM Content Manager Enterprise Edition Resource Manager 8.4.3 and 9.5  ...)
 	NOT-FOR-US: IBM
 CVE-2018-1501 (IBM Security Guardium 10.5, 10.6, and 11.0 could allow an unauthorized ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1500
 	RESERVED
 CVE-2018-1499



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a406f5a63258c9b36e3f7afa51c69b937e5be652

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a406f5a63258c9b36e3f7afa51c69b937e5be652
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200826/3d807228/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list