[Git][security-tracker-team/security-tracker][master] Process some NFUsProcess some NFUsProcess some NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8a89182b by Salvatore Bonaccorso at 2020-07-02T23:34:07+02:00
Process some NFUsProcess some NFUsProcess some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13,9 +13,9 @@ CVE-2020-15504
 CVE-2020-15503 (LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affect ...)
 	TODO: check
 CVE-2020-15502 (** DISPUTED ** The DuckDuckGo application through 5.58.0 for Android,  ...)
-	TODO: check
+	NOT-FOR-US: DuckDuckGo application for Android and iOS
 CVE-2019-20894 (Traefik 2.x, in certain configurations, allows HTTPS sessions to proce ...)
-	TODO: check
+	NOT-FOR-US: Traefik
 CVE-2020-15501
 	RESERVED
 CVE-2020-15500 (An issue was discovered in server.js in TileServer GL through 3.0.0. T ...)
@@ -900,15 +900,15 @@ CVE-2020-15085 (In Saleor Storefront before version 2.10.3, request data used to
 CVE-2020-15084 (In express-jwt (NPM package) up and including version 5.3.3, the algor ...)
 	TODO: check
 CVE-2020-15083 (In PrestaShop from version 1.7.0.0 and before version 1.7.6.6, if a ta ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2020-15082 (In PrestaShop from version 1.6.0.1 and before version 1.7.6.6, the das ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2020-15081 (In PrestaShop from version 1.5.0.0 and before 1.7.6.6, there is inform ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2020-15080 (In PrestaShop from version 1.7.4.0 and before version 1.7.6.6, some fi ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2020-15079 (In PrestaShop from version 1.5.0.0 and before version 1.7.6.6, there i ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop
 CVE-2020-15078
 	RESERVED
 CVE-2020-15077
@@ -3389,7 +3389,7 @@ CVE-2020-14093 (Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle
 	NOTE: Fix for CVE-2020-14093 introduces a regression, cf. #963107
 	NOTE: Regression fixed by: https://gitlab.com/muttmua/mutt/-/commit/dc909119b3433a84290f0095c0f43a23b98b3748
 CVE-2020-14092 (The CodePeople Payment Form for PayPal Pro plugin before 1.1.65 for Wo ...)
-	TODO: check
+	NOT-FOR-US: CodePeople Payment Form for PayPal Pro plugin for WordPress
 CVE-2020-14091
 	RESERVED
 CVE-2020-14090



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a89182bd4e7de55a682b3c1dbf5151a9ab6dbc3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a89182bd4e7de55a682b3c1dbf5151a9ab6dbc3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200702/6b9d2b7e/attachment.html>