[Git][security-tracker-team/security-tracker][master] Process NFU
Salvatore Bonaccorso
carnil at debian.org
Fri Jan 24 08:42:08 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9f7c4e94 by Salvatore Bonaccorso at 2020-01-24T09:41:52+01:00
Process NFU
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9,17 +9,17 @@ CVE-2020-7943
CVE-2020-7942
RESERVED
CVE-2020-7941 (A privilege escalation issue in plone.app.contenttypes in Plone 4.3 th ...)
- TODO: check
+ NOT-FOR-US: Plone
CVE-2020-7940 (Missing password strength checks on some forms in Plone 4.3 through 5. ...)
- TODO: check
+ NOT-FOR-US: Plone
CVE-2020-7939 (SQL Injection in DTML or in connection objects in Plone 4.0 through 5. ...)
- TODO: check
+ NOT-FOR-US: Plone
CVE-2020-7938 (plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain ...)
- TODO: check
+ NOT-FOR-US: Plone
CVE-2020-7937 (An XSS issue in the title field in Plone 5.0 through 5.2.1 allows user ...)
- TODO: check
+ NOT-FOR-US: Plone
CVE-2020-7936 (An open redirect on the login form (and possibly other places) in Plon ...)
- TODO: check
+ NOT-FOR-US: Plone
CVE-2020-7935
RESERVED
CVE-2020-7934
@@ -4148,7 +4148,7 @@ CVE-2020-6009
CVE-2020-6008
RESERVED
CVE-2020-6007 (Philips Hue Bridge model 2.X prior to and including version 1935144020 ...)
- TODO: check
+ NOT-FOR-US: Philips Hue Bridge model
CVE-2020-6006
RESERVED
CVE-2020-6005
@@ -9527,17 +9527,17 @@ CVE-2019-19900 (An issue was discovered in Backdrop CMS 1.13.x before 1.13.5 and
CVE-2019-19899 (Pebble Templates 3.1.2 allows attackers to bypass a protection mechani ...)
NOT-FOR-US: Pebble Templates
CVE-2019-19898 (In IXP EasyInstall 6.2.13723, there are cleartext credentials in netwo ...)
- TODO: check
+ NOT-FOR-US: IXP EasyInstall
CVE-2019-19897 (In IXP EasyInstall 6.2.13723, there is Remote Code Execution via the A ...)
- TODO: check
+ NOT-FOR-US: IXP EasyInstall
CVE-2019-19896 (In IXP EasyInstall 6.2.13723, there is Remote Code Execution via weak ...)
- TODO: check
+ NOT-FOR-US: IXP EasyInstall
CVE-2019-19895 (In IXP EasyInstall 6.2.13723, there is Lateral Movement (using the Age ...)
- TODO: check
+ NOT-FOR-US: IXP EasyInstall
CVE-2019-19894 (In IXP EasyInstall 6.2.13723, it is possible to temporarily disable UA ...)
- TODO: check
+ NOT-FOR-US: IXP EasyInstall
CVE-2019-19893 (In IXP EasyInstall 6.2.13723, there is Directory Traversal on TCP port ...)
- TODO: check
+ NOT-FOR-US: IXP EasyInstall
CVE-2019-19892
RESERVED
CVE-2019-19891 (An encryption key vulnerability on Mitel SIP-DECT wireless devices 8.0 ...)
@@ -277039,7 +277039,7 @@ CVE-2013-1595
CVE-2013-1594
RESERVED
CVE-2013-1593 (A Denial of Service vulnerability exists in the WRITE_C function in th ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-1592 (A Buffer Overflow vulnerability exists in the Message Server service _ ...)
NOT-FOR-US: SAP
CVE-2013-1591 (Stack-based buffer overflow in libpixman, as used in Pale Moon before ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9f7c4e94374179b054749547a622601325a1b0c8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9f7c4e94374179b054749547a622601325a1b0c8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200124/919b880b/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list