[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Thu Jun 25 11:13:13 BST 2020 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3618698f by Moritz Muehlenhoff at 2020-06-25T12:12:49+02:00
NFUs
new doom issue
add ATS

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2020-15046 (The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a  ...)
-	TODO: check
+	NOT-FOR-US: Supermicro
 CVE-2020-15045
 	RESERVED
 CVE-2020-15044
@@ -9,13 +9,13 @@ CVE-2020-15043
 CVE-2020-15042
 	RESERVED
 CVE-2020-15041 (PHP-Fusion 9.03.60 allows XSS via the administration/site_links.php Ad ...)
-	TODO: check
+	NOT-FOR-US: PHP-Fusion
 CVE-2020-15040
 	RESERVED
 CVE-2020-15039
 	RESERVED
 CVE-2020-15038 (The SeedProd coming-soon plugin before 5.1.1 for WordPress allows XSS. ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2020-15037
 	RESERVED
 CVE-2020-15036
@@ -83,7 +83,8 @@ CVE-2020-15009
 CVE-2020-15008
 	RESERVED
 CVE-2020-15007 (A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tec ...)
-	TODO: check
+	- rbdoom3bfg <unfixed>
+	NOTE: Possibly not built
 CVE-2020-15006 (Bludit 3.12.0 allows stored XSS via JavaScript code in an SVG document ...)
 	NOT-FOR-US: Bludit
 CVE-2020-15005 (In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34. ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -53,6 +53,8 @@ squid3/oldstable
 --
 teeworlds/stable (jmm)
 --
+trafficserver
+--
 xcftools
   Hugo proposed to work on this update
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3618698fa026a59545662752ae066f9df4abd68c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3618698fa026a59545662752ae066f9df4abd68c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200625/255fb1bb/attachment.html>

More information about the debian-security-tracker-commits mailing list