[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bf4d7092 by Salvatore Bonaccorso at 2020-01-25T23:17:14+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -71632,7 +71632,7 @@ CVE-2019-1462 (A remote code execution vulnerability exists in Microsoft PowerPo
 CVE-2019-1461 (A denial of service vulnerability exists in Microsoft Word software wh ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-1460 (A spoofing vulnerability exists in the way Microsoft Outlook for Andro ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Outlook for Android software
 CVE-2019-1459
 	REJECTED
 CVE-2019-1458 (An elevation of privilege vulnerability exists in Windows when the Win ...)
@@ -71644,7 +71644,7 @@ CVE-2019-1456 (A remote code execution vulnerability exists in Microsoft Windows
 CVE-2019-1455
 	REJECTED
 CVE-2019-1454 (An elevation of privilege vulnerability exists when the Windows User P ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1453 (A denial of service vulnerability exists in Remote Desktop Protocol (R ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-1452
@@ -71724,7 +71724,7 @@ CVE-2019-1416 (An elevation of privilege vulnerability exists due to a race cond
 CVE-2019-1415 (An elevation of privilege vulnerability exists in Windows Installer be ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-1414 (An elevation of privilege vulnerability exists in Visual Studio Code w ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2019-1413 (A security feature bypass vulnerability exists when Microsoft Edge imp ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-1412 (An information disclosure vulnerability exists in Windows Adobe Type M ...)
@@ -103869,7 +103869,7 @@ CVE-2018-8656
 CVE-2018-8655
 	RESERVED
 CVE-2018-8654 (An elevation of privilege vulnerability exists in Microsoft Dynamics 3 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2018-8653 (A remote code execution vulnerability exists in the way that the scrip ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2018-8652 (A Cross-site Scripting (XSS) vulnerability exists when Windows Azure P ...)
@@ -261124,7 +261124,7 @@ CVE-2013-7003 (Multiple cross-site scripting (XSS) vulnerabilities in LiveZilla
 CVE-2012-6614
 	RESERVED
 CVE-2012-6613 (D-Link DSR-250N devices with firmware 1.05B73_WW allow Persistent Root ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2014-0365
 	RESERVED
 CVE-2014-0364 (The ParseRoster component in the Ignite Realtime Smack XMPP API before ...)
@@ -276445,7 +276445,7 @@ CVE-2013-1746
 CVE-2013-1745
 	RESERVED
 CVE-2013-1744 (IRIS citations management tool through 1.3 allows remote attackers to  ...)
-	TODO: check
+	NOT-FOR-US: IRIS citations management tool
 CVE-2013-1743 (Multiple cross-site scripting (XSS) vulnerabilities in report.cgi in B ...)
 	- bugzilla <not-affected> (Only affects 4.1 to 4.4)
 	- bugzilla4 <itp> (bug #669643)
@@ -279635,7 +279635,7 @@ CVE-2012-6495 (Multiple directory traversal vulnerabilities in the (1) twikidraw
 	- moin 1.9.5-3
 	[wheezy] - moin 1.9.4-8+deb7u1
 CVE-2012-6494 (Rapid7 Nexpose before 5.5.4 contains a session hijacking vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Rapid7 Nexpose
 CVE-2012-6493 (Cross-site request forgery (CSRF) vulnerability in Rapid7 Nexpose Secu ...)
 	NOT-FOR-US: Rapid7 Nexpose Security Console
 CVE-2012-6492



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bf4d7092c651517d72ab22949ebe5e321b34a869

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bf4d7092c651517d72ab22949ebe5e321b34a869
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200125/76f01d29/attachment.html>