[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Feb 19 20:30:37 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ee063e8d by Salvatore Bonaccorso at 2020-02-19T21:30:12+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -742,7 +742,7 @@ CVE-2020-8961
 CVE-2020-8960
 	RESERVED
 CVE-2020-8959 (Western Digital WesternDigitalSSDDashboardSetup.exe before 3.0.2.0 all ...)
-	TODO: check
+	NOT-FOR-US: Western Digital
 CVE-2020-8958
 	RESERVED
 CVE-2020-8957
@@ -1037,7 +1037,7 @@ CVE-2020-8826
 CVE-2020-8825 (index.php?p=/dashboard/settings/branding in Vanilla 2.6.3 allows store ...)
 	NOT-FOR-US: Vanilla Forums
 CVE-2020-8824 (Hitron CODA-4582U 7.1.1.30 devices allow XSS via a Managed Device name ...)
-	TODO: check
+	NOT-FOR-US: Hitron devices
 CVE-2020-8823 (htmlfile in lib/transport/htmlfile.js in SockJS before 3.0 is vulnerab ...)
 	NOT-FOR-US: SockJS
 CVE-2020-8822 (Digi TransPort WR21 5.2.2.3, WR44 5.1.6.4, and WR44v2 5.1.6.9 devices  ...)
@@ -43189,7 +43189,7 @@ CVE-2019-12440 (The Sitecore Rocks plugin before 2.1.149 for Sitecore allows an
 CVE-2019-12438
 	RESERVED
 CVE-2019-12437 (In SilverStripe through 4.3.3, the previous fix for SS-2018-007 does n ...)
-	TODO: check
+	NOT-FOR-US: SilverStripe
 CVE-2019-12436 (Samba 4.10.x before 4.10.5 has a NULL pointer dereference, leading to  ...)
 	- samba <not-affected> (Only affects Samba since 4.10.0)
 	NOTE: https://www.samba.org/samba/security/CVE-2019-12436.html
@@ -43723,7 +43723,7 @@ CVE-2019-12247 (** DISPUTED ** QEMU 3.0.0 has an Integer Overflow because the qg
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2019-05/msg05457.html
 	NOTE: Disputed upstream as not beeing exploitable.
 CVE-2019-12246 (SilverStripe through 4.3.3 allows a Denial of Service on flush and dev ...)
-	TODO: check
+	NOT-FOR-US: SilverStripe
 CVE-2019-12245 (SilverStripe through 4.3.3 has incorrect access control for protected  ...)
 	NOT-FOR-US: SilverStripe
 CVE-2019-12244



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ee063e8dfc238c2fdf21df63ed16e005b85f8c54

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ee063e8dfc238c2fdf21df63ed16e005b85f8c54
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200219/a5a2aaac/attachment.html>

More information about the debian-security-tracker-commits mailing list