[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Nov 5 08:30:48 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8e141504 by Salvatore Bonaccorso at 2020-11-05T09:30:28+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1292,13 +1292,13 @@ CVE-2017-18925 (opentmpfiles through 0.3.1 allows local users to take ownership
 	- opentmpfiles <unfixed> (bug #973242)
 	NOTE: https://github.com/OpenRC/opentmpfiles/issues/4
 CVE-2020-27692 (The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0 ...)
-	TODO: check
+	NOT-FOR-US: Relish (Verve Connect) VH510 device
 CVE-2020-27691 (The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0 ...)
-	TODO: check
+	NOT-FOR-US: Relish (Verve Connect) VH510 device
 CVE-2020-27690 (The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0 ...)
-	TODO: check
+	NOT-FOR-US: Relish (Verve Connect) VH510 device
 CVE-2020-27689 (The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0 ...)
-	TODO: check
+	NOT-FOR-US: Relish (Verve Connect) VH510 device
 CVE-2020-27688
 	RESERVED
 CVE-2020-27687
@@ -2344,7 +2344,7 @@ CVE-2020-27389
 CVE-2020-27388 (Multiple Stored Cross Site Scripting (XSS) vulnerabilities exist in th ...)
 	NOT-FOR-US: YOURLS Admin Panel
 CVE-2020-27387 (An unrestricted file upload issue in HorizontCMS through 1.0.0-beta al ...)
-	TODO: check
+	NOT-FOR-US: HorizontCMS
 CVE-2020-27386
 	RESERVED
 CVE-2020-27385
@@ -105306,7 +105306,7 @@ CVE-2019-7358 (An exploitable heap overflow vulnerability in the DXF-parsing fun
 CVE-2019-7357
 	RESERVED
 CVE-2019-7356 (Subrion CMS v4.2.1 allows XSS via the panel/phrases/ VALUE parameter. ...)
-	TODO: check
+	NOT-FOR-US: Subrion CMS
 CVE-2019-1000024 (OPT/NET BV NG-NetMS version v3.6-2 and earlier versions contains a Cro ...)
 	NOT-FOR-US: OPT/NET BV
 CVE-2019-1000023 (OPT/NET BV OPTOSS Next Gen Network Management System (NG-NetMS) versio ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e141504af28573b9d2126e084c15b819885e94e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e141504af28573b9d2126e084c15b819885e94e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201105/6df89f70/attachment.html>

More information about the debian-security-tracker-commits mailing list