[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5e7fcd39 by Salvatore Bonaccorso at 2020-01-07T09:42:56+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -219,7 +219,7 @@ CVE-2020-5848
 CVE-2020-5847
 	RESERVED
 CVE-2020-5846 (An insecure file upload and code execution issue was discovered in Ahs ...)
-	TODO: check
+	NOT-FOR-US: Ahsay Cloud Backup Suite
 CVE-2020-5845
 	RESERVED
 CVE-2020-5844
@@ -891,7 +891,7 @@ CVE-2020-5514 (Gila CMS 1.11.8 allows Unrestricted Upload of a File with a Dange
 CVE-2020-5513 (Gila CMS 1.11.8 allows /cm/delete?t=../ Directory Traversal. ...)
 	NOT-FOR-US: Gila CMS
 CVE-2020-5512 (Gila CMS 1.11.8 allows /admin/media?path=../ Path Traversal. ...)
-	TODO: check
+	NOT-FOR-US: Gila CMS
 CVE-2020-5511
 	RESERVED
 CVE-2020-5510
@@ -917,7 +917,7 @@ CVE-2019-20350
 CVE-2019-20349
 	RESERVED
 CVE-2019-20348 (OKER G232V1 v1.03.02.20161129 devices provide a root terminal on a UAR ...)
-	TODO: check
+	NOT-FOR-US: OKER G232V1 devices
 CVE-2019-20347
 	RESERVED
 CVE-2019-20346
@@ -9942,7 +9942,7 @@ CVE-2019-19587 (In WSO2 Enterprise Integrator 6.5.0, reflected XSS occurs when u
 CVE-2019-19586
 	RESERVED
 CVE-2019-19585 (An issue was discovered in rConfig 3.9.3. The install script updates t ...)
-	TODO: check
+	NOT-FOR-US: rConfig
 CVE-2019-19584
 	RESERVED
 CVE-2019-19583 (An issue was discovered in Xen through 4.12.x allowing x86 HVM/PVH gue ...)
@@ -10322,7 +10322,7 @@ CVE-2019-19511
 CVE-2019-19510
 	RESERVED
 CVE-2019-19509 (An issue was discovered in rConfig 3.9.3. A remote authenticated user  ...)
-	TODO: check
+	NOT-FOR-US: rConfig
 CVE-2019-19508
 	RESERVED
 CVE-2019-19507 (In jpv (aka Json Pattern Validator) before 2.1.1, compareCommon() can  ...)
@@ -21037,9 +21037,9 @@ CVE-2019-16719 (WTCMS 1.0 allows index.php?g=admin&m=index&a=index CSRF
 CVE-2019-16718 (In radare2 before 3.9.0, a command injection vulnerability exists in b ...)
 	- radare2 <not-affected> (Incomplete fixes for CVE-2019-14745 not applied)
 CVE-2019-16717 (OX App Suite through 7.10.2 has XSS. ...)
-	TODO: check
+	NOT-FOR-US: Open-Xchange App Suite
 CVE-2019-16716 (OX App Suite through 7.10.2 has Incorrect Access Control. ...)
-	TODO: check
+	NOT-FOR-US: Open-Xchange App Suite
 CVE-2019-16715
 	RESERVED
 CVE-2019-16713 (ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrate ...)
@@ -22215,13 +22215,13 @@ CVE-2019-16276 (Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Sm
 	NOTE: https://github.com/golang/go/commit/5a6ab1ec3e678640befebeb3318b746a64ad986c (golang-1.13)
 	NOTE: https://github.com/golang/go/commit/6e6f4aaf70c8b1cc81e65a26332aa9409de03ad8 (golang-1.12)
 CVE-2019-16274 (DTEN D5 before 1.3 and D7 before 1.3 devices transfer customer data fi ...)
-	TODO: check
+	NOT-FOR-US: DTEN D5 devices
 CVE-2019-16273 (DTEN D5 and D7 before 1.3.4 devices allow unauthenticated root shell a ...)
-	TODO: check
+	NOT-FOR-US: DTEN D5 devices
 CVE-2019-16272 (On DTEN D5 and D7 before 1.3.4 devices, factory settings allows for fi ...)
-	TODO: check
+	NOT-FOR-US: DTEN D5 devices
 CVE-2019-16271 (DTEN D5 and D7 before 1.3.2 devices allows remote attackers to read sa ...)
-	TODO: check
+	NOT-FOR-US: DTEN D5 devices
 CVE-2019-16270
 	RESERVED
 CVE-2019-16269



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5e7fcd39cc0778d3b542656e62685f4eb6a6e6fa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5e7fcd39cc0778d3b542656e62685f4eb6a6e6fa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200107/f441b39c/attachment.html>