[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aef8393a by Salvatore Bonaccorso at 2020-06-03T22:20:58+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,17 +5,17 @@ CVE-2020-13789
 CVE-2020-13788
 	RESERVED
 CVE-2020-13787 (D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Transmission of ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-13786 (D-Link DIR-865L Ax 1.20B01 Beta devices allow CSRF. ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-13785 (D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate Encryption Str ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-13784 (D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a P ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-13783 (D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sens ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-13782 (D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection. ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2020-13781
 	RESERVED
 CVE-2020-13780
@@ -198,7 +198,7 @@ CVE-2020-13704
 CVE-2020-13703
 	RESERVED
 CVE-2019-20809 (The price oracle in PriceOracle.sol in Compound Finance Compound Price ...)
-	TODO: check
+	NOT-FOR-US: Compound Finance Compound Price Oracle
 CVE-2020-13754 (hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger an out-of ...)
 	- qemu <unfixed>
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2020-06/msg00004.html
@@ -2105,7 +2105,7 @@ CVE-2020-12848
 CVE-2020-12847
 	RESERVED
 CVE-2020-12846 (Zimbra before 8.8.15 Patch 10 and 9.x before 9.0.0 Patch 3 allows remo ...)
-	TODO: check
+	NOT-FOR-US: Zimbra
 CVE-2020-12845
 	RESERVED
 CVE-2020-12844
@@ -24152,7 +24152,7 @@ CVE-2020-4309 (IBM Content Navigator 3.0CD could disclose sensitive information
 CVE-2020-4308
 	RESERVED
 CVE-2020-4307 (IBM Security Guardium 11.1 could allow an attacker on the same network ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4306 (IBM Planning Analytics Local 2.0.0 through 2.0.9 is vulnerable to cros ...)
 	NOT-FOR-US: IBM
 CVE-2020-4305
@@ -24386,13 +24386,13 @@ CVE-2020-4192
 CVE-2020-4191
 	RESERVED
 CVE-2020-4190 (IBM Security Guardium 10.6, 11.0, and 11.1 contains hard-coded credent ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4189
 	RESERVED
 CVE-2020-4188
 	RESERVED
 CVE-2020-4187 (IBM Security Guardium 11.1 could disclose sensitive information on the ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4186
 	RESERVED
 CVE-2020-4185
@@ -24402,17 +24402,17 @@ CVE-2020-4184
 CVE-2020-4183
 	RESERVED
 CVE-2020-4182 (IBM Security Guardium 11.1 is vulnerable to cross-site scripting. This ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4181
 	RESERVED
 CVE-2020-4180 (IBM Security Guardium 11.1 could allow a remote authenticated attacker ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4179
 	RESERVED
 CVE-2020-4178
 	RESERVED
 CVE-2020-4177 (IBM Security Guardium 11.1 contains hard-coded credentials, such as a  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4176
 	RESERVED
 CVE-2020-4175



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aef8393a9f0c7975d53d6132bebdcf8b112c6f58

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aef8393a9f0c7975d53d6132bebdcf8b112c6f58
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200603/1a920dc8/attachment.html>