[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Jun 24 06:21:35 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
16ef174f by Salvatore Bonaccorso at 2020-06-24T07:21:03+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15,13 +15,13 @@ CVE-2020-14995
 CVE-2020-14994
 	RESERVED
 CVE-2020-14993 (A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vig ...)
-	TODO: check
+	NOT-FOR-US: DrayTek devices
 CVE-2020-14992
 	RESERVED
 CVE-2020-14991
 	RESERVED
 CVE-2020-14990 (IOBit Advanced SystemCare Free 13.5.0.263 allows local users to gain p ...)
-	TODO: check
+	NOT-FOR-US: IOBit Advanced SystemCare Free
 CVE-2020-14989
 	RESERVED
 CVE-2020-14988
@@ -45,21 +45,21 @@ CVE-2020-14980 (The Sophos Secure Email application through 3.9.4 for Android ha
 CVE-2020-14979
 	RESERVED
 CVE-2020-14978 (An issue was discovered in F-Secure SAFE 17.7 on macOS. Due to incorre ...)
-	TODO: check
+	NOT-FOR-US: F-Secure SAFE
 CVE-2020-14977 (An issue was discovered in F-Secure SAFE 17.7 on macOS. The XPC servic ...)
-	TODO: check
+	NOT-FOR-US: F-Secure SAFE
 CVE-2020-14976 (GNS3 ubridge through 0.9.18 on macOS, as used in GNS3 server before 2. ...)
 	TODO: check
 CVE-2020-14975 (The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to del ...)
-	TODO: check
+	NOT-FOR-US: IOBit Unlocker
 CVE-2020-14974 (The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unl ...)
-	TODO: check
+	NOT-FOR-US: IOBit Unlocker
 CVE-2020-14973 (The loginForm within the general/login.php webpage in webTareas 2.0p8  ...)
 	NOT-FOR-US: webTareas
 CVE-2020-14972 (Multiple SQL injection vulnerabilities in Sourcecodester Pisay Online  ...)
 	NOT-FOR-US: Sourcecodester Pisay Online E-Learning System
 CVE-2020-14971 (Pi-hole through 5.0 allows code injection in piholedhcp (the Static DH ...)
-	TODO: check
+	NOT-FOR-US: Pi-hole
 CVE-2020-14970
 	RESERVED
 CVE-2020-14969 (app/Model/Attribute.php in MISP 2.4.127 lacks an ACL lookup on attribu ...)
@@ -71,7 +71,7 @@ CVE-2020-14967 (An issue was discovered in the jsrsasign package before 8.0.18 f
 CVE-2020-14966 (An issue was discovered in the jsrsasign package through 8.0.18 for No ...)
 	NOT-FOR-US: jsrsasign
 CVE-2020-14965 (On TP-Link TL-WR740N v4 and TL-WR740ND v4 devices, an attacker with ac ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2020-14964
 	RESERVED
 CVE-2020-14963
@@ -107,13 +107,13 @@ CVE-2020-14948
 CVE-2020-14947
 	RESERVED
 CVE-2020-14946 (downloadFile.ashx in the Administrator section of the Surveillance mod ...)
-	TODO: check
+	NOT-FOR-US: Surveillance module in Global RADAR BSA Radar
 CVE-2020-14945 (A privilege escalation vulnerability exists within Global RADAR BSA Ra ...)
-	TODO: check
+	NOT-FOR-US: Global RADAR BSA Radar
 CVE-2020-14944 (Global RADAR BSA Radar 1.6.7234.24750 and earlier lacks valid authoriz ...)
-	TODO: check
+	NOT-FOR-US: Global RADAR BSA Radar
 CVE-2020-14943 (The Firstname and Lastname parameters in Global RADAR BSA Radar 1.6.72 ...)
-	TODO: check
+	NOT-FOR-US: Global RADAR BSA Radar
 CVE-2020-14942 (Tendenci 12.0.10 allows unrestricted deserialization in apps\helpdesk\ ...)
 	NOT-FOR-US: Tendenci
 CVE-2020-14941
@@ -27689,7 +27689,7 @@ CVE-2020-4190 (IBM Security Guardium 10.6, 11.0, and 11.1 contains hard-coded cr
 CVE-2020-4189
 	RESERVED
 CVE-2020-4188 (IBM Security Guardium 10.6 and 11.1 may use insufficiently random numb ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4187 (IBM Security Guardium 11.1 could disclose sensitive information on the ...)
 	NOT-FOR-US: IBM
 CVE-2020-4186



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16ef174fa09c791f690a2e3b700650aad8f8692a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16ef174fa09c791f690a2e3b700650aad8f8692a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200624/79e2f668/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list