[Git][security-tracker-team/security-tracker][master] Process some new NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
00daa48f by Salvatore Bonaccorso at 2020-02-22T09:53:21+01:00
Process some new NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,9 +9,9 @@ CVE-2020-9332
 CVE-2020-9331
 	RESERVED
 CVE-2020-9330 (Certain Xerox WorkCentre printers before 073.xxx.000.02300 do not requ ...)
-	TODO: check
+	NOT-FOR-US: Xerox
 CVE-2020-9329 (Gogs through 0.11.91 allows attackers to violate the admin-specified r ...)
-	TODO: check
+	NOT-FOR-US: Go Git Service
 CVE-2020-9328
 	RESERVED
 CVE-2020-9327 (In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger  ...)
@@ -621,7 +621,7 @@ CVE-2020-9041
 CVE-2020-9040
 	RESERVED
 CVE-2020-9039 (Couchbase Server 4.x and 5.x before 6.0.0 has Insecure Permissions for ...)
-	TODO: check
+	NOT-FOR-US: Couchbase
 CVE-2020-9038 (Joplin through 1.0.184 allows Arbitrary File Read via XSS. ...)
 	NOT-FOR-US: Joplin
 CVE-2020-9037
@@ -1045,11 +1045,11 @@ CVE-2020-8864
 CVE-2020-8863
 	RESERVED
 CVE-2020-8862 (This vulnerability allows network-adjacent attackers to bypass authent ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-8861 (This vulnerability allows network-adjacent attackers to bypass authent ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-8860 (This vulnerability allows remote attackers to execute arbitrary code o ...)
-	TODO: check
+	NOT-FOR-US: Samsung Galaxy S10 Firmware
 CVE-2020-8859
 	RESERVED
 CVE-2020-8858 (This vulnerability allows remote attackers to execute arbitrary code o ...)
@@ -3232,7 +3232,7 @@ CVE-2020-7909 (In JetBrains TeamCity before 2019.1.5, some server-stored passwor
 CVE-2020-7908 (In JetBrains TeamCity before 2019.1.5, reverse tabnabbing was possible ...)
 	NOT-FOR-US: JetBrains
 CVE-2020-7907 (In the JetBrains Scala plugin before 2019.2.1, some artefact dependenc ...)
-	TODO: check
+	NOT-FOR-US:  JetBrains Scala plugin
 CVE-2020-7906 (In JetBrains Rider versions 2019.3 EAP2 through 2019.3 EAP7, there wer ...)
 	NOT-FOR-US: JetBrains
 CVE-2020-7905 (Ports listened to by JetBrains IntelliJ IDEA before 2019.3 were expose ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/00daa48fba23770149d020d5fd012478e03c7ed1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/00daa48fba23770149d020d5fd012478e03c7ed1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200222/019029fe/attachment-0001.html>