[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Jun 2 21:33:14 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d500b3bb by Salvatore Bonaccorso at 2020-06-02T22:32:33+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23632,7 +23632,7 @@ CVE-2020-4505
 CVE-2020-4504
 	RESERVED
 CVE-2020-4503 (IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4502
 	RESERVED
 CVE-2020-4501
@@ -23776,7 +23776,7 @@ CVE-2020-4433
 CVE-2020-4432
 	RESERVED
 CVE-2020-4431 (IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4430 (IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a rem ...)
 	NOT-FOR-US: IBM
 CVE-2020-4429 (IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 con ...)
@@ -23904,9 +23904,9 @@ CVE-2020-4369
 CVE-2020-4368
 	RESERVED
 CVE-2020-4367 (IBM Planning Analytics Local 2.0 uses weaker than expected cryptograph ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4366 (IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4365 (IBM WebSphere Application Server 8.5 is vulnerable to server-side requ ...)
 	NOT-FOR-US: IBM
 CVE-2020-4364
@@ -23918,7 +23918,7 @@ CVE-2020-4362 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 tradition
 CVE-2020-4361
 	RESERVED
 CVE-2020-4360 (IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4359
 	RESERVED
 CVE-2020-4358 (IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 is vulnerable to cross-site ...)
@@ -58091,7 +58091,7 @@ CVE-2019-11845 (An HTML Injection vulnerability has been discovered on the RICOH
 CVE-2019-11844 (An HTML Injection vulnerability has been discovered on the RICOH SP 45 ...)
 	NOT-FOR-US: RICOH
 CVE-2019-11843 (The MailPoet plugin before 3.23.2 for WordPress allows remote attacker ...)
-	TODO: check
+	NOT-FOR-US: MailPoet plugin for WordPress
 CVE-2019-11841 (A message-forgery issue was discovered in crypto/openpgp/clearsign/cle ...)
 	{DLA-1920-1}
 	- golang-go.crypto 1:0.0~git20200221.2aa609c-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d500b3bbead6437d9dd6e635076d3caff596cff6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d500b3bbead6437d9dd6e635076d3caff596cff6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200602/f5f17857/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list