[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Feb 21 20:58:51 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
106594db by Salvatore Bonaccorso at 2020-02-21T21:58:13+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5518,9 +5518,9 @@ CVE-2020-6844 (In TopManage OLK 2020, login CSRF can be chained with another vul
 CVE-2020-6843 (Zoho ManageEngine ServiceDesk Plus 11.0 Build 11007 allows XSS. This i ...)
 	NOT-FOR-US: Zoho ManageEngine ServiceDesk Plus
 CVE-2020-6842 (D-Link DCH-M225 1.05b01 and earlier devices allow remote authenticated ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-6841 (D-Link DCH-M225 1.05b01 and earlier devices allow remote attackers to  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-6840 (In mruby 2.1.0, there is a use-after-free in hash_slice in mrbgems/mru ...)
 	- mruby <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/mruby/mruby/issues/4927
@@ -8824,7 +8824,7 @@ CVE-2020-5328
 CVE-2020-5327
 	RESERVED
 CVE-2020-5326 (Affected Dell Client platforms contain a BIOS Setup configuration auth ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2020-5325
 	RESERVED
 CVE-2020-5324 (Dell Client Consumer and Commercial Platforms contain an Arbitrary Fil ...)
@@ -13161,9 +13161,9 @@ CVE-2019-19868
 CVE-2019-19867
 	RESERVED
 CVE-2019-19866 (Atos Unify OpenScape UC Web Client 1.0 allows remote attackers to obta ...)
-	TODO: check
+	NOT-FOR-US: Atos Unify OpenScape UC Web Client
 CVE-2019-19865 (Atos Unify OpenScape UC Web Client 1.0 allows XSS. An attacker could e ...)
-	TODO: check
+	NOT-FOR-US: Atos Unify OpenScape UC Web Client
 CVE-2020-3824
 	RESERVED
 CVE-2020-3823
@@ -285183,7 +285183,7 @@ CVE-2012-6279
 CVE-2012-6278
 	REJECTED
 CVE-2012-6277 (Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 1 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2012-6276 (Directory traversal vulnerability in the web-based management interfac ...)
 	NOT-FOR-US: TP-LINK TL-WR841N
 CVE-2012-6275 (Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAn ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/106594dbffecb24cd6c88db9ec9020d9537695af

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/106594dbffecb24cd6c88db9ec9020d9537695af
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200221/12403a57/attachment.html>

More information about the debian-security-tracker-commits mailing list