[Git][security-tracker-team/security-tracker][master] Process NFUs

Sun Sep 27 10:56:01 BST 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
944fb646 by Salvatore Bonaccorso at 2020-09-27T11:55:29+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -26177,7 +26177,7 @@ CVE-2020-13997 (In Shopware before 6.2.3, the database password is leaked to an
 CVE-2020-13996 (The J2Store plugin before 3.3.13 for Joomla! allows a SQL injection at ...)
 	NOT-FOR-US: J2Store plugin for Joomla!
 CVE-2020-13995 (U.S. Air Force Sensor Data Management System extract75 has a buffer ov ...)
-	TODO: check
+	NOT-FOR-US: U.S. Air Force Sensor Data Management System extract75
 CVE-2020-13994 (An issue was discovered in Mods for HESK 3.1.0 through 2019.1.0. A pri ...)
 	NOT-FOR-US: Mods for HESK
 CVE-2020-13993 (An issue was discovered in Mods for HESK 3.1.0 through 2019.1.0. A bli ...)
@@ -43507,7 +43507,7 @@ CVE-2020-7737
 CVE-2020-7736
 	RESERVED
 CVE-2020-7735 (The package ng-packagr before 10.1.1 are vulnerable to Command Injecti ...)
-	TODO: check
+	NOT-FOR-US: ng-packagr
 CVE-2020-7734 (All versions of package cabot are vulnerable to Cross-site Scripting ( ...)
 	NOT-FOR-US: cabot
 CVE-2020-7733 (The package ua-parser-js before 0.7.22 are vulnerable to Regular Expre ...)
@@ -72031,9 +72031,9 @@ CVE-2019-16214 (Libra Core before 2019-09-03 has an erroneous regular expression
 CVE-2019-16213 (Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 could allow a remote authe ...)
 	NOT-FOR-US: Tenda PA6 Wi-Fi Powerline extender
 CVE-2019-16212 (A vulnerability in Brocade SANnav versions before v2.1.0 could allow a ...)
-	TODO: check
+	NOT-FOR-US: Brocade SANnav
 CVE-2019-16211 (Brocade SANnav versions before v2.1.0, contain a Plaintext Password St ...)
-	TODO: check
+	NOT-FOR-US: Brocade SANnav
 CVE-2019-16210 (Brocade SANnav versions before v2.0, logs plain text database connecti ...)
 	NOT-FOR-US: Brocade
 CVE-2019-16209 (A vulnerability, in The ReportsTrustManager class of Brocade SANnav ve ...)
@@ -155826,11 +155826,11 @@ CVE-2018-6451
 CVE-2018-6450
 	RESERVED
 CVE-2018-6449 (Host Header Injection vulnerability in the http management interface i ...)
-	TODO: check
+	NOT-FOR-US: Brocade Fabric OS
 CVE-2018-6448 (A vulnerability in the management interface in Brocade Fabric OS Versi ...)
-	TODO: check
+	NOT-FOR-US: Brocade Fabric OS
 CVE-2018-6447 (A Reflective XSS Vulnerability in HTTP Management Interface in Brocade ...)
-	TODO: check
+	NOT-FOR-US: Brocade Fabric OS
 CVE-2018-6446 (A vulnerability in Brocade Network Advisor Version Before 14.3.1 could ...)
 	NOT-FOR-US: Brocade
 CVE-2018-6445 (A Vulnerability in Brocade Network Advisor versions before 14.0.3 coul ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/944fb64680ddd47020936e6c7b33ae9c5b6ae894

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/944fb64680ddd47020936e6c7b33ae9c5b6ae894
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200927/b587a8ae/attachment.html>
