[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5c94800b by Moritz Muehlenhoff at 2020-02-10T17:54:01+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -273606,13 +273606,13 @@ CVE-2013-3640 (Cross-site scripting (XSS) vulnerability in the Instant Web Publi
 CVE-2013-3639 (Multiple cross-site scripting (XSS) vulnerabilities in Xaraya 2.4.0-b1 ...)
 	NOT-FOR-US: Xaraya
 CVE-2013-3638 (SQL injection vulnerability in Boonex Dolphin before 7.1.3 allows remo ...)
-	TODO: check
+	NOT-FOR-US: Boonex Dolphin
 CVE-2013-3637 (ProjectPier 0.8.8 does not use the Secure flag for cookies ...)
-	TODO: check
+	NOT-FOR-US: ProjectPier
 CVE-2013-3636 (ProjectPier 0.8.8 has a Remote Information Disclosure Weakness because ...)
-	TODO: check
+	NOT-FOR-US: ProjectPier
 CVE-2013-3635 (ProjectPier 0.8.8 has stored XSS ...)
-	TODO: check
+	NOT-FOR-US: ProjectPier
 CVE-2013-3634 (A vulnerability has been identified in SCALANCE X-200 switch family (i ...)
 	NOT-FOR-US: Siemens switches
 CVE-2013-3633 (A vulnerability has been identified in SCALANCE X-200 switch family (i ...)
@@ -283885,13 +283885,13 @@ CVE-2012-6311
 CVE-2012-6310
 	RESERVED
 CVE-2012-6309 (A vulnerability exists in Arctic Torrent 1.4 via unspecified vectors i ...)
-	TODO: check
+	NOT-FOR-US: Arctic Torrent
 CVE-2012-6308
 	RESERVED
 CVE-2012-6307 (A vulnerability exists in JPEGsnoop 1.5.2 due to an unspecified issue  ...)
-	TODO: check
+	NOT-FOR-US: JPEGsnoop
 CVE-2012-6306 (A vulnerability exists in HCView (aka Hardcoreview) 1.4 due to a write ...)
-	TODO: check
+	NOT-FOR-US: HCView (aka Hardcoreview)
 CVE-2012-6305
 	RESERVED
 CVE-2012-6304
@@ -286099,7 +286099,7 @@ CVE-2012-5572 (CRLF injection vulnerability in the cookie method (lib/Dancer/Coo
 CVE-2012-5571 (OpenStack Keystone Essex (2012.1) and Folsom (2012.2) does not properl ...)
 	- keystone 2012.1.1-11 (bug #694433)
 CVE-2012-5570 (The Basic webmail module 6.x-1.x before 6.x-1.2 for Drupal allows remo ...)
-	TODO: check
+	NOT-FOR-US: Drupal addon
 CVE-2012-5569 (Multiple cross-site scripting (XSS) vulnerabilities in the Basic webma ...)
 	NOT-FOR-US: Drupal Webmail module
 CVE-2012-5568 (Apache Tomcat through 7.0.x allows remote attackers to cause a denial  ...)
@@ -314905,7 +314905,7 @@ CVE-2011-0222 (WebKit, as used in Apple Safari before 5.0.6, allows remote attac
 CVE-2011-0221 (WebKit, as used in Apple Safari before 5.0.6, allows remote attackers  ...)
 	NOT-FOR-US: Webkit / if anything of this affects Chromium, the Chrome sec team will know and fix
 CVE-2011-0220 (Apple Bonjour before 2011 allows a crash via a crafted multicast DNS p ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2011-0219 (Apple Safari before 5.0.6 allows remote attackers to bypass the Same O ...)
 	NOT-FOR-US: Webkit / if anything of this affects Chromium, the Chrome sec team will know and fix
 CVE-2011-0218 (WebKit, as used in Apple Safari before 5.0.6, allows remote attackers  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c94800b95c14e49248615ee18c6b35ef23671df

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c94800b95c14e49248615ee18c6b35ef23671df
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200210/b3ee0269/attachment.html>