[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Tue Sep 15 09:39:01 BST 2020 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3e5fbe20 by Moritz Muehlenhoff at 2020-09-15T10:38:34+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7904,7 +7904,7 @@ CVE-2020-21733 (Sagemcom F at ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp,
 CVE-2020-21732 (Rukovoditel Project Management app 2.6 is affected by: Cross Site Scri ...)
 	NOT-FOR-US: Rukovoditel Project Management app
 CVE-2020-21731 (Gazie 7.29 is affected by: Cross Site Scripting (XSS) via http://192.1 ...)
-	TODO: check
+	NOT-FOR-US: Gazie
 CVE-2020-21730
 	RESERVED
 CVE-2020-21729
@@ -20642,7 +20642,7 @@ CVE-2020-15592 (SteelCentral Aternity Agent before 11.0.0.120 on Windows allows
 CVE-2020-15591
 	RESERVED
 CVE-2020-15590 (A vulnerability in the Private Internet Access (PIA) VPN Client for Li ...)
-	TODO: check
+	NOT-FOR-US: Private Internet Access client for Linux
 CVE-2020-15589
 	RESERVED
 CVE-2020-15588 (An issue was discovered in the client side of Zoho ManageEngine Deskto ...)
@@ -26606,7 +26606,8 @@ CVE-2020-13313 (A vulnerability was discovered in GitLab versions before 13.1.10
 	- gitlab 13.2.8-1
 	NOTE: https://about.gitlab.com/releases/2020/09/02/security-release-gitlab-13-3-3-released/
 CVE-2020-13312 (A vulnerability was discovered in GitLab versions before 13.1.10, 13.2 ...)
-	TODO: check
+	- gitlab 13.2.8-1
+	NOTE: https://about.gitlab.com/releases/2020/09/02/security-release-gitlab-13-3-3-released/
 CVE-2020-13311 (A vulnerability was discovered in GitLab versions before 13.1.10, 13.2 ...)
 	- gitlab 13.2.8-1
 	NOTE: https://about.gitlab.com/releases/2020/09/02/security-release-gitlab-13-3-3-released/
@@ -30876,7 +30877,7 @@ CVE-2020-11883 (In Divante vue-storefront-api through 1.11.1 and storefront-api
 CVE-2020-11882 (The O2 Business application 1.2.0 for Android exposes the canvasm.myo2 ...)
 	NOT-FOR-US: O2 Business
 CVE-2020-11881 (An array index error in MikroTik RouterOS 6.41.3 through 6.46.5, and 7 ...)
-	TODO: check
+	NOT-FOR-US: MikroTik RouterOS
 CVE-2020-11880 (An issue was discovered in KDE KMail before 19.12.3. By using the prop ...)
 	- kmail 4:20.04.1-1 (bug #958054)
 	[buster] - kmail <no-dsa> (Minor issue)
@@ -36062,11 +36063,11 @@ CVE-2020-10231 (TP-Link NC200 through 2.1.8_Build_171109, NC210 through 1.0.9_Bu
 CVE-2020-10230 (CentOS-WebPanel.com (aka CWP) CentOS Web Panel (for CentOS 6 and 7) al ...)
 	NOT-FOR-US: CentOS-WebPanel.com
 CVE-2020-10229 (A CSRF issue in vtecrm vtenext 19 CE allows attackers to carry out unw ...)
-	TODO: check
+	NOT-FOR-US: vtecrm vtenext
 CVE-2020-10228 (A file upload vulnerability in vtecrm vtenext 19 CE allows authenticat ...)
-	TODO: check
+	NOT-FOR-US: vtecrm vtenext
 CVE-2020-10227 (A cross-site scripting (XSS) vulnerability in the messages module of v ...)
-	TODO: check
+	NOT-FOR-US: vtecrm vtenext
 CVE-2020-10226
 	RESERVED
 CVE-2020-10225 (An unauthenticated file upload vulnerability has been identified in ad ...)
@@ -42029,7 +42030,7 @@ CVE-2020-7809 (ALSong 3.46 and earlier version contain a Document Object Model (
 CVE-2020-7808 (In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update processin ...)
 	NOT-FOR-US: RAONWIZ K Upload
 CVE-2020-7807 (A vulnerability that can hijack a DLL file that is loaded during produ ...)
-	TODO: check
+	NOT-FOR-US: LG
 CVE-2020-7806 (Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary cod ...)
 	NOT-FOR-US: Tobesoft Xplatform
 CVE-2020-7805 (An issue was discovered on KT Slim egg IML500 (R7283, R8112, R8424) an ...)
@@ -75411,13 +75412,13 @@ CVE-2019-14763 (In the Linux kernel before 4.16.4, a double-locking error in dri
 CVE-2019-14762
 	RESERVED
 CVE-2019-14761 (An issue was discovered in KaiOS 2.5. The pre-installed Note applicati ...)
-	TODO: check
+	NOT-FOR-US: KaiOS
 CVE-2019-14760 (An issue was discovered in KaiOS 2.5. The pre-installed Recorder appli ...)
-	TODO: check
+	NOT-FOR-US: KaiOS
 CVE-2019-14759 (An issue was discovered in KaiOS 1.0, 2.5, and 2.5.1. The pre-installe ...)
-	TODO: check
+	NOT-FOR-US: KaiOS
 CVE-2019-14758 (An issue was discovered in KaiOS 2.5 and 2.5.1. The pre-installed File ...)
-	TODO: check
+	NOT-FOR-US: KaiOS
 CVE-2019-14757 (An issue was discovered in KaiOS 2.5 and 2.5.1. The pre-installed Cont ...)
 	NOT-FOR-US: KaiOS
 CVE-2019-14756 (An issue was discovered in KaiOS 1.0, 2.5, and 2.5.12.5. The pre-insta ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e5fbe204095223ff52d327669075fa178d549ed

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e5fbe204095223ff52d327669075fa178d549ed
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200915/a930bc53/attachment.html>

More information about the debian-security-tracker-commits mailing list