[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Oct 8 21:04:09 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
311f4521 by Salvatore Bonaccorso at 2020-10-08T22:03:24+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45899,9 +45899,9 @@ CVE-2020-7468
 CVE-2020-7467
 	RESERVED
 CVE-2020-7466 (The PPP implementation of MPD before 5.9 allows a remote attacker who  ...)
-	TODO: check
+	NOT-FOR-US: MPD (FreeBSD PPP daemon)
 CVE-2020-7465 (The L2TP implementation of MPD before 5.9 allows a remote attacker who ...)
-	TODO: check
+	NOT-FOR-US: MPD (FreeBSD PPP daemon)
 CVE-2020-7464
 	RESERVED
 CVE-2020-7463
@@ -46203,7 +46203,7 @@ CVE-2020-7318
 CVE-2020-7317
 	RESERVED
 CVE-2020-7316 (Unquoted service path vulnerability in McAfee File and Removable Media ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2020-7315 (DLL Injection Vulnerability in McAfee Agent (MA) for Windows prior to  ...)
 	NOT-FOR-US: McAfee
 CVE-2020-7314 (Privilege Escalation Vulnerability in the installer in McAfee Data Exc ...)
@@ -47283,7 +47283,7 @@ CVE-2020-6877
 CVE-2020-6876
 	RESERVED
 CVE-2020-6875 (A ZTE product is impacted by the improper access control vulnerability ...)
-	TODO: check
+	NOT-FOR-US: ZTE
 CVE-2020-6874 (A ZTE product is impacted by the cryptographic issues vulnerability. T ...)
 	NOT-FOR-US: ZTE
 CVE-2020-6873 (A ZTE product has a DoS vulnerability. Because the equipment couldn&#8 ...)
@@ -56444,19 +56444,19 @@ CVE-2020-3604
 CVE-2020-3603
 	RESERVED
 CVE-2020-3602 (A vulnerability in the CLI of Cisco StarOS operating system for Cisco  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3601 (A vulnerability in the CLI of Cisco StarOS operating system for Cisco  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3600
 	RESERVED
 CVE-2020-3599
 	RESERVED
 CVE-2020-3598 (A vulnerability in the web-based management interface of Cisco Vision  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3597 (A vulnerability in the configuration restore feature of Cisco Nexus Da ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3596 (A vulnerability in the Session Initiation Protocol (SIP) of Cisco Expr ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3595
 	RESERVED
 CVE-2020-3594
@@ -56470,7 +56470,7 @@ CVE-2020-3591
 CVE-2020-3590
 	RESERVED
 CVE-2020-3589 (A vulnerability in the web-based management interface of Cisco Identit ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3588
 	RESERVED
 CVE-2020-3587
@@ -56512,9 +56512,9 @@ CVE-2020-3570
 CVE-2020-3569 (Multiple vulnerabilities in the Distance Vector Multicast Routing Prot ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3568 (A vulnerability in the antispam protection mechanisms of Cisco AsyncOS ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3567 (A vulnerability in the management REST API of Cisco Industrial Network ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3566 (A vulnerability in the Distance Vector Multicast Routing Protocol (DVM ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3565
@@ -56560,9 +56560,9 @@ CVE-2020-3546 (A vulnerability in the web-based management interface of Cisco As
 CVE-2020-3545 (A vulnerability in Cisco FXOS Software could allow an authenticated, l ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3544 (A vulnerability in the Cisco Discovery Protocol implementation for Cis ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3543 (A vulnerability in the Cisco Discovery Protocol of Cisco Video Surveil ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3542 (A vulnerability in Cisco Webex Training could allow an authenticated,  ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3541 (A vulnerability in the media engine component of Cisco Webex Meetings  ...)
@@ -56576,9 +56576,9 @@ CVE-2020-3538
 CVE-2020-3537 (A vulnerability in Cisco Jabber for Windows software could allow an au ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3536 (A vulnerability in the web-based management interface of Cisco SD-WAN  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3535 (A vulnerability in the loading mechanism of specific DLLs in the Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3534
 	RESERVED
 CVE-2020-3533
@@ -56717,7 +56717,7 @@ CVE-2020-3469
 CVE-2020-3468 (A vulnerability in the web-based management interface of Cisco SD-WAN  ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3467 (A vulnerability in the web-based management interface of Cisco Identit ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3466 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3465 (A vulnerability in Cisco IOS XE Software could allow an unauthenticate ...)
@@ -57023,7 +57023,7 @@ CVE-2020-3322 (A vulnerability in Cisco Webex Network Recording Player and Cisco
 CVE-2020-3321 (A vulnerability in Cisco Webex Network Recording Player and Cisco Webe ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3320 (A vulnerability in the web-based management interface of Cisco Firepow ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2020-3319 (A vulnerability in Cisco Webex Network Recording Player and Cisco Webe ...)
 	NOT-FOR-US: Cisco
 CVE-2020-3318 (Multiple vulnerabilities in Cisco Firepower Management Center (FMC) So ...)
@@ -60910,19 +60910,19 @@ CVE-2020-1909
 CVE-2020-1908
 	RESERVED
 CVE-2020-1907 (A stack overflow in WhatsApp for Android prior to v2.20.196.16, WhatsA ...)
-	TODO: check
+	NOT-FOR-US: WhatsApp
 CVE-2020-1906 (A buffer overflow in WhatsApp for Android prior to v2.20.130 and Whats ...)
-	TODO: check
+	NOT-FOR-US: WhatsApp
 CVE-2020-1905 (Media ContentProvider URIs used for opening attachments in other apps  ...)
-	TODO: check
+	NOT-FOR-US: WhatsApp
 CVE-2020-1904 (A path validation issue in WhatsApp for iOS prior to v2.20.61 and What ...)
-	TODO: check
+	NOT-FOR-US: WhatsApp
 CVE-2020-1903 (An issue when unzipping docx, pptx, and xlsx documents in WhatsApp for ...)
-	TODO: check
+	NOT-FOR-US: WhatsApp
 CVE-2020-1902 (A user running a quick search on a highly forwarded message on WhatsAp ...)
-	TODO: check
+	NOT-FOR-US: WhatsApp
 CVE-2020-1901 (Receiving a large text message containing URLs in WhatsApp for iOS pri ...)
-	TODO: check
+	NOT-FOR-US: WhatsApp
 CVE-2020-1900
 	RESERVED
 CVE-2020-1899
@@ -62389,7 +62389,7 @@ CVE-2019-19202 (In Vtiger 7.x before 7.2.0, the My Preferences saving functional
 CVE-2019-19201
 	RESERVED
 CVE-2019-19200 (REDDOXX MailDepot 2032 2.2.1242 allows authenticated users to access t ...)
-	TODO: check
+	NOT-FOR-US: REDDOXX MailDepot
 CVE-2019-19199 (REDDOXX MailDepot 2032 SP2 2.2.1242 has Insufficient Session Expiratio ...)
 	NOT-FOR-US: REDDOXX MailDepot
 CVE-2019-19198 (The Scoutnet Kalender plugin 1.1.0 for WordPress allows XSS. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/311f4521abae10f5cea7f7dcaf5758faf722177b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/311f4521abae10f5cea7f7dcaf5758faf722177b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201008/b63cb073/attachment.html>

More information about the debian-security-tracker-commits mailing list