[Git][security-tracker-team/security-tracker][master] Process several NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Jan 11 20:05:16 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
01ff37d6 by Salvatore Bonaccorso at 2021-01-11T21:02:04+01:00
Process several NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -26397,13 +26397,13 @@ CVE-2020-24905
 CVE-2020-24904
 	RESERVED
 CVE-2020-24903 (Cute Editor for ASP.NET 6.4 is vulnerable to reflected cross-site scri ...)
-	TODO: check
+	NOT-FOR-US: Cute Editor for ASP.NET
 CVE-2020-24902 (Quixplorer <=2.4.1 is vulnerable to reflected cross-site scripting  ...)
 	TODO: check
 CVE-2020-24901 (The default installation of Krpano Panorama Viewer version <=1.20.8 ...)
-	TODO: check
+	NOT-FOR-US: Krpano Panorama Viewer
 CVE-2020-24900 (The default installation of Krpano Panorama Viewer version <=1.20.8 ...)
-	TODO: check
+	NOT-FOR-US: Krpano Panorama Viewer
 CVE-2020-24899
 	RESERVED
 CVE-2020-24898 (The Table Filter and Charts for Confluence Server app before 5.3.26 (f ...)
@@ -41409,11 +41409,11 @@ CVE-2020-17506 (Artica Web Proxy 4.30.00000000 allows remote attacker to bypass
 CVE-2020-17505 (Artica Web Proxy 4.30.000000 allows an authenticated remote attacker t ...)
 	NOT-FOR-US: Artica Web Proxy
 CVE-2020-17504 (The NDN-210 has a web administration panel which is made available ove ...)
-	TODO: check
+	NOT-FOR-US: Barco
 CVE-2020-17503 (The NDN-210 has a web administration panel which is made available ove ...)
-	TODO: check
+	NOT-FOR-US: Barco
 CVE-2020-17502 (Barco TransForm N before 3.8 allows Command Injection (issue 2 of 4).  ...)
-	TODO: check
+	NOT-FOR-US: Barco
 CVE-2020-17501
 	RESERVED
 CVE-2020-17500 (Barco TransForm NDN-210 Lite, NDN-210 Pro, NDN-211 Lite, and NDN-211 P ...)
@@ -51628,9 +51628,9 @@ CVE-2020-13547 (A type confusion vulnerability exists in the JavaScript engine o
 CVE-2020-13546
 	RESERVED
 CVE-2020-13545 (An exploitable signed conversion vulnerability exists in the TextMaker ...)
-	TODO: check
+	NOT-FOR-US: SoftMaker
 CVE-2020-13544 (An exploitable sign extension vulnerability exists in the TextMaker do ...)
-	TODO: check
+	NOT-FOR-US: SoftMaker
 CVE-2020-13543 (A code execution vulnerability exists in the WebSocket functionality o ...)
 	{DSA-4797-1}
 	- webkit2gtk 2.30.3-1
@@ -65776,7 +65776,7 @@ CVE-2020-8586
 CVE-2020-8585
 	RESERVED
 CVE-2020-8584 (Element OS versions prior to 1.8P1 and 12.2 are susceptible to a vulne ...)
-	TODO: check
+	NOT-FOR-US: Element OS
 CVE-2020-8583 (Element Software versions prior to 12.2 and HCI versions prior to 1.8P ...)
 	NOT-FOR-US: HCI
 CVE-2020-8582 (Element Software versions prior to 12.2 and HCI versions prior to 1.8P ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01ff37d63bce4489e650ed9b2d99439306fde6f2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01ff37d63bce4489e650ed9b2d99439306fde6f2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210111/8a4e08b9/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list