[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Feb 14 20:27:23 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
71c38d1d by Salvatore Bonaccorso at 2020-02-14T21:26:53+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2020-8995
 	RESERVED
 CVE-2019-20455 (Gateways/Gateway.php in Heartland & Global Payments PHP SDK before ...)
-	TODO: check
+	NOT-FOR-US: Heartland & Global Payments PHP SDK
 CVE-2019-20454 (An out-of-bounds read was discovered in PCRE before 10.34 when the pat ...)
 	TODO: check
 CVE-2020-8994
@@ -237,7 +237,7 @@ CVE-2019-20452
 CVE-2012-6721 (Multiple cross-site request forgery (CSRF) vulnerabilities in the (1)  ...)
 	TODO: check
 CVE-2012-6720 (Multiple cross-site scripting (XSS) vulnerabilities in SocialEngine be ...)
-	TODO: check
+	NOT-FOR-US: SocialEngine
 CVE-2020-8884
 	RESERVED
 CVE-2020-8883
@@ -321,11 +321,11 @@ CVE-2020-8845 (This vulnerability allows remote atackers to execute arbitrary co
 CVE-2020-8844 (This vulnerability allows remote attackers to execute arbitrary code o ...)
 	NOT-FOR-US: Foxit Reader
 CVE-2020-8843 (An issue was discovered in Istio 1.3 through 1.3.6. Under certain circ ...)
-	TODO: check
+	NOT-FOR-US: itsio
 CVE-2020-8842
 	RESERVED
 CVE-2020-8841 (An issue was discovered in TestLink 1.9.19. The relation_type paramete ...)
-	TODO: check
+	NOT-FOR-US: TestLink
 CVE-2020-8840 (FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean- ...)
 	- jackson-databind <unfixed>
 	NOTE: https://github.com/FasterXML/jackson-databind/issues/2620
@@ -392,7 +392,7 @@ CVE-2020-8817
 CVE-2020-8816
 	RESERVED
 CVE-2020-8815 (Improper connection handling in the base connection handler in IKTeam  ...)
-	TODO: check
+	NOT-FOR-US: BearFTP
 CVE-2020-8814
 	RESERVED
 CVE-2018-21034
@@ -829,9 +829,9 @@ CVE-2020-8614 (An issue was discovered on Askey AP4000W TDC_V1.01.003 devices. A
 CVE-2020-8613
 	RESERVED
 CVE-2020-8612 (In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2 ...)
-	TODO: check
+	NOT-FOR-US: Progress MOVEit Transfer
 CVE-2020-8611 (In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2 ...)
-	TODO: check
+	NOT-FOR-US: Progress MOVEit Transfer
 CVE-2020-8610
 	RESERVED
 CVE-2020-8609
@@ -3831,7 +3831,7 @@ CVE-2020-7253
 CVE-2020-7252
 	RESERVED
 CVE-2020-7251 (Improper access control vulnerability in Configuration Tool in McAfee  ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2020-7250
 	RESERVED
 CVE-2020-7249 (SMC D3G0804W 3.5.2.5-LAT_GA devices allow XSS via the SSID field on th ...)
@@ -6492,19 +6492,19 @@ CVE-2020-6071
 CVE-2020-6070
 	RESERVED
 CVE-2020-6069 (An exploitable out-of-bounds write vulnerability exists in the igcore1 ...)
-	TODO: check
+	NOT-FOR-US: Accusoft ImageGear
 CVE-2020-6068
 	RESERVED
 CVE-2020-6067 (An exploitable out-of-bounds write vulnerability exists in the igcore1 ...)
-	TODO: check
+	NOT-FOR-US: Accusoft ImageGear
 CVE-2020-6066 (An exploitable out-of-bounds write vulnerability exists in the igcore1 ...)
-	TODO: check
+	NOT-FOR-US: Accusoft ImageGear
 CVE-2020-6065 (An exploitable out-of-bounds write vulnerability exists in the bmp_par ...)
-	TODO: check
+	NOT-FOR-US: Accusoft ImageGear
 CVE-2020-6064 (An exploitable out-of-bounds write vulnerability exists in the uncompr ...)
-	TODO: check
+	NOT-FOR-US: Accusoft ImageGear
 CVE-2020-6063 (An exploitable out-of-bounds write vulnerability exists in the uncompr ...)
-	TODO: check
+	NOT-FOR-US: Accusoft ImageGear
 CVE-2020-6062
 	RESERVED
 CVE-2020-6061
@@ -7570,7 +7570,7 @@ CVE-2020-5534
 CVE-2020-5533
 	RESERVED
 CVE-2020-5532 (ilbo App (ilbo App for Android prior to version 1.1.8 and ilbo App for ...)
-	TODO: check
+	NOT-FOR-US: ilbo App
 CVE-2020-5531
 	RESERVED
 CVE-2020-5530
@@ -11607,9 +11607,9 @@ CVE-2019-20048 (An issue was discovered on Alcatel-Lucent OmniVista 8770 devices
 CVE-2019-20047 (An issue was discovered on Alcatel-Lucent OmniVista 4760 devices, and  ...)
 	NOT-FOR-US: Alcatel-Lucent OmniVista 4760 devices
 CVE-2019-20046 (The Synergy Systems & Solutions PLC & RTU system has a vulnera ...)
-	TODO: check
+	NOT-FOR-US: Synergy Systems & Solutions PLC & RTU system
 CVE-2019-20045 (The Synergy Systems & Solutions PLC & RTU system has a vulnera ...)
-	TODO: check
+	NOT-FOR-US: Synergy Systems & Solutions PLC & RTU system
 CVE-2019-20044
 	RESERVED
 CVE-2019-20040
@@ -14113,9 +14113,9 @@ CVE-2019-19760
 CVE-2019-19759
 	RESERVED
 CVE-2019-19758 (A vulnerability in the web interface of Lenovo EZ Media & Backup C ...)
-	TODO: check
+	NOT-FOR-US: Lenovo
 CVE-2019-19757 (An internal product security audit of Lenovo XClarity Administrator (L ...)
-	TODO: check
+	NOT-FOR-US: Lenovo
 CVE-2019-19756
 	RESERVED
 CVE-2019-19755
@@ -15526,9 +15526,9 @@ CVE-2019-19703 (In Ktor through 1.2.6, the client resends data from the HTTP Aut
 CVE-2019-19702 (The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML Ext ...)
 	NOT-FOR-US: Modoboa
 CVE-2018-21033 (A vulnerability in Hitachi Command Suite prior to 8.6.2-00, Hitachi Au ...)
-	TODO: check
+	NOT-FOR-US: Hitachi
 CVE-2018-21032 (A vulnerability in Hitachi Command Suite prior to 8.7.1-00 and Hitachi ...)
-	TODO: check
+	NOT-FOR-US: Hitachi
 CVE-2020-2509
 	RESERVED
 CVE-2020-2508
@@ -19362,7 +19362,7 @@ CVE-2019-18917
 CVE-2019-18916
 	RESERVED
 CVE-2019-18915 (A potential security vulnerability has been identified with certain ve ...)
-	TODO: check
+	NOT-FOR-US: HP System Event Utility
 CVE-2019-18914
 	RESERVED
 CVE-2019-18913 (A potential security vulnerability with pre-boot DMA may allow unautho ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/71c38d1dc2b41d2511907e466cf508f40ced84d1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/71c38d1dc2b41d2511907e466cf508f40ced84d1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200214/8b9724a8/attachment.html>

More information about the debian-security-tracker-commits mailing list