[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Feb 24 20:48:49 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5e873877 by Salvatore Bonaccorso at 2020-02-24T21:48:28+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9566,11 +9566,11 @@ CVE-2020-5190
 CVE-2020-5189
 	RESERVED
 CVE-2020-5188 (DNN (formerly DotNetNuke) through 9.4.4 has Insecure Permissions. ...)
-	TODO: check
+	NOT-FOR-US: DNN
 CVE-2020-5187 (DNN (formerly DotNetNuke) through 9.4.4 allows Path Traversal (issue 2 ...)
-	TODO: check
+	NOT-FOR-US: DNN
 CVE-2020-5186 (DNN (formerly DotNetNuke) through 9.4.4 allows XSS (issue 1 of 2). ...)
-	TODO: check
+	NOT-FOR-US: DNN
 CVE-2020-5185
 	RESERVED
 CVE-2020-5184
@@ -20562,7 +20562,7 @@ CVE-2019-18848 (The json-jwt gem before 1.11.0 for Ruby lacks an element count d
 CVE-2019-18847
 	RESERVED
 CVE-2019-18846 (OX App Suite through 7.10.2 allows SSRF. ...)
-	TODO: check
+	NOT-FOR-US: OX App Suite
 CVE-2019-18845 (The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1  ...)
 	NOT-FOR-US: Patriot Viper RGB
 CVE-2019-18844 (The Device Model in ACRN before 2019w25.5-140000p relies on assert cal ...)
@@ -43278,13 +43278,13 @@ CVE-2019-12515 (There is an out-of-bounds read vulnerability in the function Fla
 CVE-2019-12514
 	RESERVED
 CVE-2019-12513 (In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP dis ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2019-12512 (In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, an attacker may execu ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2019-12511 (In NETGEAR Nighthawk X10-R900 prior to 1.0.4.26, an attacker may execu ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2019-12510 (In NETGEAR Nighthawk X10-R900 prior to 1.0.4.26, an attacker may bypas ...)
-	TODO: check
+	NOT-FOR-US: Netgear
 CVE-2019-12509
 	RESERVED
 CVE-2019-12508



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e873877ae416c05f4a9ac4c4f50e71d6d23cbaf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e873877ae416c05f4a9ac4c4f50e71d6d23cbaf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200224/6e5f93f4/attachment.html>

More information about the debian-security-tracker-commits mailing list