[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Mar 31 09:56:42 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4305cdf7 by Salvatore Bonaccorso at 2020-03-31T10:56:07+02:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -57499,11 +57499,11 @@ CVE-2019-9511 (Some HTTP/2 implementations are vulnerable to window size manipul
 CVE-2019-9510 (A vulnerability in Microsoft Windows 10 1803 and Windows Server 2019 a ...)
 	NOT-FOR-US: Microsoft
 CVE-2019-9509 (The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is v ...)
-	TODO: check
+	NOT-FOR-US: Vertiv Avocent UMG-4000
 CVE-2019-9508 (The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is v ...)
-	TODO: check
+	NOT-FOR-US: Vertiv Avocent UMG-4000
 CVE-2019-9507 (The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is v ...)
-	TODO: check
+	NOT-FOR-US: Vertiv Avocent UMG-4000
 CVE-2019-9506 (The Bluetooth BR/EDR specification up to and including version 5.1 per ...)
 	{DLA-1930-1 DLA-1919-1}
 	- linux 5.2.6-1
@@ -62345,7 +62345,7 @@ CVE-2019-7632 (LifeSize Team, Room, Passport, and Networker 220 devices allow Au
 CVE-2019-7631
 	RESERVED
 CVE-2019-7630 (An issue was discovered in gdrv.sys in Gigabyte APP Center before 19.0 ...)
-	TODO: check
+	NOT-FOR-US: Gigabyte APP Center
 CVE-2019-7629 (Stack-based buffer overflow in the strip_vt102_codes function in TinTi ...)
 	- tintin++ 2.01.5-2 (low; bug #924348)
 	[stretch] - tintin++ <no-dsa> (Minor issue)
@@ -62429,7 +62429,7 @@ CVE-2019-7591
 CVE-2019-7590 (ExacqVision Server’s services 'exacqVisionServer', 'dvrdhcpserve ...)
 	NOT-FOR-US: ExacqVision
 CVE-2019-7589 (A vulnerability with the SmartService API Service option exists whereb ...)
-	TODO: check
+	NOT-FOR-US: SmartService API Service
 CVE-2019-7588 (A vulnerability in the exacqVision Enterprise System Manager (ESM) v5. ...)
 	NOT-FOR-US: exacqVision Enterprise System Manager
 CVE-2019-7587 (Bo-blog Wind through 1.6.0-r allows SQL Injection via the admin.php/co ...)
@@ -63485,9 +63485,9 @@ CVE-2019-7247
 CVE-2019-7246
 	RESERVED
 CVE-2019-7245 (An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23. ...)
-	TODO: check
+	NOT-FOR-US: TechPowerUp GPU-Z
 CVE-2019-7244 (An issue was discovered in kerneld.sys in AIDA64 before 5.99. The vuln ...)
-	TODO: check
+	NOT-FOR-US: AIDA64
 CVE-2019-7243
 	RESERVED
 CVE-2019-7242
@@ -63495,7 +63495,7 @@ CVE-2019-7242
 CVE-2019-7241
 	RESERVED
 CVE-2019-7240 (An issue was discovered in WinRing0x64.sys in Moo0 System Monitor 1.83 ...)
-	TODO: check
+	NOT-FOR-US: Moo0 System Monitor
 CVE-2019-7239
 	RESERVED
 CVE-2019-7238 (Sonatype Nexus Repository Manager before 3.15.0 has Incorrect Access C ...)
@@ -64763,7 +64763,7 @@ CVE-2019-6698 (Use of Hard-coded Credentials vulnerability in FortiRecorder all
 CVE-2019-6697
 	RESERVED
 CVE-2019-6696 (An improper input validation vulnerability in FortiOS 6.2.1, 6.2.0, 6. ...)
-	TODO: check
+	NOT-FOR-US: Fortiguard
 CVE-2019-6695 (Lack of root file system integrity checking in Fortinet FortiManager V ...)
 	NOT-FOR-US: Fortinet
 CVE-2019-6694
@@ -65042,11 +65042,11 @@ CVE-2019-6562 (In Philips Tasy EMR, Tasy EMR Versions 3.02.1744 and prior, the s
 CVE-2019-6561 (Cross-site request forgery has been identified in Moxa IKS and EDS, wh ...)
 	NOT-FOR-US: Moxa
 CVE-2019-6560 (In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and ...)
-	TODO: check
+	NOT-FOR-US: Auto-Maskin RP210E
 CVE-2019-6559 (Moxa IKS and EDS allow remote authenticated users to cause a denial of ...)
 	NOT-FOR-US: Moxa
 CVE-2019-6558 (In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and ...)
-	TODO: check
+	NOT-FOR-US: Auto-Maskin RP210E
 CVE-2019-6557 (Several buffer overflow vulnerabilities have been identified in Moxa I ...)
 	NOT-FOR-US: Moxa
 CVE-2019-6556 (When processing project files, the application (Omron CX-Programmer v9 ...)
@@ -67812,7 +67812,7 @@ CVE-2019-5544 (OpenSLP as used in ESXi and the Horizon DaaS appliances has a hea
 	- openslp-dfsg <removed>
 	NOTE: https://www.openwall.com/lists/oss-security/2019/12/06/1
 CVE-2019-5543 (For VMware Horizon Client for Windows (5.x and prior before 5.3.0), VM ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2019-5542 (VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1 ...)
 	NOT-FOR-US: VMware
 CVE-2019-5541 (VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1 ...)
@@ -71140,7 +71140,7 @@ CVE-2019-4003
 CVE-2019-4002
 	RESERVED
 CVE-2019-4001 (Improper input validation in Druva inSync Client 6.5.0 allows a local, ...)
-	TODO: check
+	NOT-FOR-US: Druva inSync Client
 CVE-2019-4000 (Improper neutralization of directives in dynamically evaluated code in ...)
 	NOT-FOR-US: Druva inSync Mac OS Client
 CVE-2019-3999 (Improper neutralization of special elements used in an OS command in D ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4305cdf75d635ed30db46c1bbf23b34cbe898000

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4305cdf75d635ed30db46c1bbf23b34cbe898000
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200331/181fb429/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list