[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
jmm at debian.org
Sun Dec 13 19:17:39 GMT 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f2e958cb by Moritz Muehlenhoff at 2020-12-13T20:17:24+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1948,11 +1948,11 @@ CVE-2020-29593
CVE-2020-29592
RESERVED
CVE-2020-29591 (Versions of the Official registry Docker images through 2.7.0 contain ...)
- TODO: check
+ NOT-FOR-US: registry Docker image
CVE-2020-29590 (Versions of the Official teamspeak Docker images through 3.6.0 contain ...)
- TODO: check
+ NOT-FOR-US: teamspeak Docker image
CVE-2020-29589 (Versions of the Official kapacitor Docker images through 1.5.0-alpine ...)
- TODO: check
+ NOT-FOR-US: kapacitor Docker image
CVE-2020-29588
RESERVED
CVE-2020-29587
@@ -3838,7 +3838,7 @@ CVE-2020-28840
CVE-2020-28839
RESERVED
CVE-2020-28838 (Cross Site Request Forgery (CSRF) in CART option in OpenCart Ltd. Open ...)
- TODO: check
+ NOT-FOR-US: OpenCart
CVE-2020-28837
RESERVED
CVE-2020-28836
@@ -5798,9 +5798,9 @@ CVE-2020-28442
CVE-2020-28441
RESERVED
CVE-2020-28440 (All versions of package corenlp-js-interface are vulnerable to Command ...)
- TODO: check
+ NOT-FOR-US: corenlp-js-interface
CVE-2020-28439 (This affects all versions of package corenlp-js-prefab. The injection ...)
- TODO: check
+ NOT-FOR-US: corenlp-js-prefab
CVE-2020-28438
RESERVED
CVE-2020-28437
@@ -7681,7 +7681,7 @@ CVE-2020-28276
CVE-2020-28275
RESERVED
CVE-2020-28274 (Prototype pollution vulnerability in 'deepref' versions 1.1.1 through ...)
- TODO: check
+ NOT-FOR-US: Node deepref
CVE-2020-28273 (Prototype pollution vulnerability in 'set-in' versions 1.0.0 through 2 ...)
NOT-FOR-US: Node set-in
CVE-2020-28272 (Prototype pollution vulnerability in 'keyget' versions 1.0.0 through 2 ...)
@@ -9271,7 +9271,7 @@ CVE-2020-27732
CVE-2020-27731
RESERVED
CVE-2020-27730 (In versions 3.0.0-3.9.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller ...)
- TODO: check
+ NOT-FOR-US: NGINX Controller
CVE-2020-27729
RESERVED
CVE-2020-27728
@@ -10952,11 +10952,11 @@ CVE-2020-27136
CVE-2020-27135
RESERVED
CVE-2020-27134 (Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-27133 (Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-27132 (Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-27131 (Multiple vulnerabilities in the Java deserialization function that is ...)
NOT-FOR-US: Cisco
CVE-2020-27130 (A vulnerability in Cisco Security Manager could allow an unauthenticat ...)
@@ -10966,7 +10966,7 @@ CVE-2020-27129 (A vulnerability in the remote management feature of Cisco SD-WAN
CVE-2020-27128 (A vulnerability in the application data endpoints of Cisco SD-WAN vMan ...)
NOT-FOR-US: Cisco
CVE-2020-27127 (Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2020-27126 (A vulnerability in an API of Cisco Webex Meetings could allow an unaut ...)
NOT-FOR-US: Cisco
CVE-2020-27125 (A vulnerability in Cisco Security Manager could allow an unauthenticat ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f2e958cb742789bbe46cd655990fcb0c84ae9686
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f2e958cb742789bbe46cd655990fcb0c84ae9686
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201213/42482f21/attachment.html>
More information about the debian-security-tracker-commits
mailing list