[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Jul 21 10:00:29 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c7901e0c by Salvatore Bonaccorso at 2020-07-21T11:00:05+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23537,9 +23537,9 @@ CVE-2020-6874
 CVE-2020-6873
 	RESERVED
 CVE-2020-6872 (The server management software module of ZTE has a storage XSS vulnera ...)
-	TODO: check
+	NOT-FOR-US: ZTE
 CVE-2020-6871 (The server management software module of ZTE has an authentication iss ...)
-	TODO: check
+	NOT-FOR-US: ZTE
 CVE-2020-6870 (The version V12.17.20T115 of ZTE U31R20 product is impacted by a desig ...)
 	NOT-FOR-US: ZTE
 CVE-2020-6869 (All versions up to 10.06 of ZTEMarket APK are impacted by an informati ...)
@@ -25634,13 +25634,13 @@ CVE-2020-6105
 CVE-2020-6104
 	RESERVED
 CVE-2020-6103 (An exploitable code execution vulnerability exists in the Shader funct ...)
-	TODO: check
+	NOT-FOR-US: AMD Radeon DirectX 11 Driver atidxx64.dll
 CVE-2020-6102 (An exploitable code execution vulnerability exists in the Shader funct ...)
-	TODO: check
+	NOT-FOR-US: AMD Radeon DirectX 11 Driver atidxx64.dll
 CVE-2020-6101 (An exploitable code execution vulnerability exists in the Shader funct ...)
-	TODO: check
+	NOT-FOR-US: AMD Radeon DirectX 11 Driver atidxx64.dll
 CVE-2020-6100 (An exploitable memory corruption vulnerability exists in AMD atidxx64. ...)
-	TODO: check
+	NOT-FOR-US: AMD
 CVE-2020-6099
 	RESERVED
 CVE-2020-6098
@@ -26388,9 +26388,9 @@ CVE-2020-5770
 CVE-2020-5769 (Insufficient output sanitization in Teltonika firmware TRB2_R_00.02.02 ...)
 	NOT-FOR-US: Teltonika
 CVE-2020-5768 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: Icegram Email Subscribers & Newsletters Plugin for WordPress
 CVE-2020-5767 (Cross-site request forgery in Icegram Email Subscribers & Newslett ...)
-	TODO: check
+	NOT-FOR-US: Icegram Email Subscribers & Newsletters Plugin for WordPress
 CVE-2020-5766 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2020-5765 (Nessus 8.10.0 and earlier were found to contain a Stored XSS vulnerabi ...)
@@ -30355,7 +30355,7 @@ CVE-2020-4127
 CVE-2020-4126
 	RESERVED
 CVE-2020-4125 (Using HCL Marketing Operations 9.1.2.4, 10.1.x, 11.1.0.x, a malicious  ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2020-4124
 	RESERVED
 CVE-2020-4123



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7901e0c7f455e28c2a3cd06ac8b06487697e749

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7901e0c7f455e28c2a3cd06ac8b06487697e749
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200721/09cf3cab/attachment.html>

More information about the debian-security-tracker-commits mailing list