[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Nov 11 20:18:06 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bb77dae0 by Salvatore Bonaccorso at 2020-11-11T21:17:09+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4013,7 +4013,7 @@ CVE-2020-27526
 CVE-2020-27525
 	RESERVED
 CVE-2020-27524 (On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multi ...)
-	TODO: check
+	NOT-FOR-US: Audi
 CVE-2020-27523 (Solstice-Pod up to 5.0.2 WEBRTC server mishandles the format-string sp ...)
 	TODO: check
 CVE-2020-27522
@@ -47038,9 +47038,9 @@ CVE-2020-9302
 CVE-2020-9301
 	RESERVED
 CVE-2020-9300 (The Access Control issues include allowing a regular user to view a re ...)
-	TODO: check
+	NOT-FOR-US: Netflix dispatch
 CVE-2020-9299 (There were XSS vulnerabilities discovered and reported in the Dispatch ...)
-	TODO: check
+	NOT-FOR-US: Netflix dispatch
 CVE-2020-9298 (The Spinnaker template resolution functionality is vulnerable to Serve ...)
 	NOT-FOR-US: Spinnaker
 CVE-2020-9297 (Netflix Titus, all versions prior to version v0.1.1-rc.274, uses Java  ...)
@@ -49338,11 +49338,11 @@ CVE-2020-8356
 CVE-2020-8355
 	RESERVED
 CVE-2020-8354 (A potential vulnerability in the SMI callback function used in the Var ...)
-	TODO: check
+	NOT-FOR-US: Lenovo
 CVE-2020-8353 (Prior to August 10, 2020, some Lenovo Desktop and Workstation systems  ...)
-	TODO: check
+	NOT-FOR-US: Lenovo
 CVE-2020-8352 (In some Lenovo Desktop models, the Configuration Change Detection BIOS ...)
-	TODO: check
+	NOT-FOR-US: Lenovo
 CVE-2020-8351
 	RESERVED
 CVE-2020-8350 (An authentication bypass vulnerability was reported in Lenovo ThinkPad ...)
@@ -58764,7 +58764,7 @@ CVE-2020-4687 (IBM Content Navigator 3.0.7 and 3.0.8 could allow an authenticate
 CVE-2020-4686 (IBM Spectrum Virtualize 8.3.1 could allow a remote user authenticated  ...)
 	NOT-FOR-US: IBM
 CVE-2020-4685 (A low level user of IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, 10.4 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4684
 	RESERVED
 CVE-2020-4683



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bb77dae0b3a2e459c58a87d9fa0d4a1084ad50bb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bb77dae0b3a2e459c58a87d9fa0d4a1084ad50bb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201111/b7e8ddfd/attachment.html>


More information about the debian-security-tracker-commits mailing list