[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
099816fc by Salvatore Bonaccorso at 2020-02-05T21:21:21+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -63071,7 +63071,7 @@ CVE-2019-4672
 CVE-2019-4671
 	RESERVED
 CVE-2019-4670 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4669
 	RESERVED
 CVE-2019-4668
@@ -63179,13 +63179,13 @@ CVE-2019-4618
 CVE-2019-4617
 	RESERVED
 CVE-2019-4616 (IBM Cloud Automation Manager 3.2.1.0 does not set the secure attribute ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4615
 	RESERVED
 CVE-2019-4614 (IBM MQ and IBM MQ Appliance 8.0 and 9.0 LTS client connecting to a Que ...)
 	NOT-FOR-US: IBM
 CVE-2019-4613 (IBM Planning Analytics 2.0 is vulnerable to cross-site request forgery ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2019-4612 (IBM Planning Analytics 2.0 is vulnerable to malicious file upload in t ...)
 	NOT-FOR-US: IBM
 CVE-2019-4611 (IBM Planning Analytics 2.0 is vulnerable to cross-site scripting. This ...)
@@ -240053,7 +240053,7 @@ CVE-2015-0104 (IBM Tivoli IT Asset Management for IT, Tivoli Service Request Man
 CVE-2015-0103 (Multiple cross-site scripting (XSS) vulnerabilities in the Process Por ...)
 	NOT-FOR-US: IBM Business Process Manager
 CVE-2015-0102 (IBM Workflow for Bluemix does not set the secure flag for the session  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2015-0101 (Cross-site scripting (XSS) vulnerability in IBM Business Process Manag ...)
 	NOT-FOR-US: IBM
 CVE-2015-0100 (Microsoft Internet Explorer 8 allows remote attackers to execute arbit ...)
@@ -281950,7 +281950,7 @@ CVE-2013-0509 (Buffer overflow in the Transaction MIB agent in IBM Tivoli Netcoo
 CVE-2013-0508 (Multiple buffer overflows in IBM Tivoli Netcool System Service Monitor ...)
 	NOT-FOR-US: IBM
 CVE-2013-0507 (IBM InfoSphere Information Server 8.1, 8.5, 8.7, 9.1 has a Session Fix ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2013-0506 (Cross-site scripting (XSS) vulnerability in IBM Sterling Order Managem ...)
 	NOT-FOR-US: IBM Sterling Order Management
 CVE-2013-0505 (IBM Sterling Order Management 8.0 before HF127, 8.5 before HF89, 9.0 b ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/099816fc86b91751a7e21a9be12047a6db8e07b3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/099816fc86b91751a7e21a9be12047a6db8e07b3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200205/df4f5fdb/attachment.html>