[Git][security-tracker-team/security-tracker][master] Process three NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Feb 17 20:14:13 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c8d220a1 by Salvatore Bonaccorso at 2020-02-17T21:13:19+01:00
Process three NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2020-9043 (The wpCentral plugin before 1.5.1 for WordPress allows disclosure of t ...)
-	TODO: check
+	NOT-FOR-US: wpCentral plugin for WordPress
 CVE-2020-9042
 	RESERVED
 CVE-2020-9041
@@ -116,7 +116,7 @@ CVE-2019-20457
 CVE-2020-9007 (Codoforum 4.8.8 allows self-XSS via the title of a new topic. ...)
 	NOT-FOR-US: Codoforum
 CVE-2020-9006 (The Popup Builder plugin 2.2.8 through 2.6.7.6 for WordPress is vulner ...)
-	TODO: check
+	NOT-FOR-US: Popup Builder plugin for WordPress
 CVE-2020-9005 (meshsystem.dll in Valve Dota 2 through 2020-02-17 allows remote attack ...)
 	TODO: check
 CVE-2020-9004
@@ -4892,7 +4892,7 @@ CVE-2020-6851 (OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1
 	NOTE: https://github.com/uclouvain/openjpeg/issues/1228
 	NOTE: https://github.com/uclouvain/openjpeg/commit/024b8407392cb0b82b04b58ed256094ed5799e04
 CVE-2020-6850 (Utilities.php in the miniorange-saml-20-single-sign-on plugin before 4 ...)
-	TODO: check
+	NOT-FOR-US: miniorange-saml-20-single-sign-on plugin for WordPress
 CVE-2020-6849 (The marketo-forms-and-tracking plugin through 1.0.2 for WordPress allo ...)
 	NOT-FOR-US: marketo-forms-and-tracking plugin for WordPress
 CVE-2020-6848 (Axper Vision II 4 devices allow XSS via the DEVICE_NAME (aka Device Na ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c8d220a11be18bba29bab3b72db0cc927bfdfcee

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c8d220a11be18bba29bab3b72db0cc927bfdfcee
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200217/44092a14/attachment.html>

More information about the debian-security-tracker-commits mailing list