[Git][security-tracker-team/security-tracker][master] Process two NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f4a0f3d0 by Salvatore Bonaccorso at 2020-02-25T17:19:04+01:00
Process two NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -58,7 +58,7 @@ CVE-2019-20481 (In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password Chan
 CVE-2019-20480 (In MIELE XGW 3000 ZigBee Gateway before 2.4.0, a malicious website vis ...)
 	NOT-FOR-US: MIELE XGW 3000 ZigBee Gateway
 CVE-2016-11020 (Kunena before 5.0.4 does not restrict avatar file extensions to gif, j ...)
-	TODO: check
+	NOT-FOR-US: Kunena
 CVE-2020-9366 (A buffer overflow was found in the way GNU Screen before 4.8.0 treated ...)
 	- screen 4.8.0-1 (bug #950896)
 	[buster] - screen <not-affected> (Vulnerable code introduced in v4.7.0)
@@ -9212,7 +9212,7 @@ CVE-2020-5246
 CVE-2020-5245 (Dropwizard-Validation before 1.3.19, and 2.0.2 may allow arbitrary cod ...)
 	TODO: check
 CVE-2020-5244 (In BuddyPress before 5.1.2, requests to a certain REST API endpoint ca ...)
-	TODO: check
+	NOT-FOR-US: BuddyPress
 CVE-2020-5243 (uap-core before 0.7.3 is vulnerable to a denial of service attack when ...)
 	TODO: check
 CVE-2020-5242 (openHAB before 2.5.2 allow a remote attacker to use REST calls to inst ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4a0f3d0fb8d5963829b809b77c2bacee11839bf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4a0f3d0fb8d5963829b809b77c2bacee11839bf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200225/3d3a7e71/attachment-0001.html>