[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso Fri, 30 Nov 2018 13:32:52 -0800

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ca75fa5c by Salvatore Bonaccorso at 2018-11-30T21:32:00Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3262,7 +3262,7 @@ CVE-2018-19529
 CVE-2018-19528 (TP-Link TL-WR886N 7.0 1.1.0 devices allow remote attackers to 
cause a ...)
        NOT-FOR-US: TP-Link
 CVE-2018-19527 (i4 assistant 7.85 allows XSS via a crafted machine name field 
within ...)
-       TODO: check
+       NOT-FOR-US: i4 assistant
 CVE-2018-19526
        RESERVED
 CVE-2018-19525
@@ -3867,7 +3867,7 @@ CVE-2018-19292
 CVE-2018-19291 (An issue discovered in DiliCMS 2.4.0. There is a CSRF 
vulnerability ...)
        NOT-FOR-US: DiliCMS
 CVE-2018-19290 (In modules/HELPBOT_MODULE in Budabot 0.6 through 4.0, lax 
syntax ...)
-       TODO: check
+       NOT-FOR-US: Budabot
 CVE-2018-19289 (An issue was discovered in Valine v1.3.3. It allows HTML 
injection, ...)
        NOT-FOR-US: Valine
 CVE-2018-19288 (Zoho ManageEngine OpManager 12.3 before Build 123223 has XSS 
via the ...)
@@ -4900,7 +4900,7 @@ CVE-2018-18989
 CVE-2018-18988
        RESERVED
 CVE-2018-18987 (VT-Designer Version 2.1.7.31 is vulnerable by the program 
populating ...)
-       TODO: check
+       NOT-FOR-US: VT-Designer
 CVE-2018-18986
        RESERVED
 CVE-2018-18985
@@ -4908,7 +4908,7 @@ CVE-2018-18985
 CVE-2018-18984
        RESERVED
 CVE-2018-18983 (VT-Designer Version 2.1.7.31 is vulnerable by the program 
reading the ...)
-       TODO: check
+       NOT-FOR-US: VT-Designer
 CVE-2018-18982 (NUUO CMS All versions 3.3 and prior the web server application 
allows ...)
        NOT-FOR-US: NUUO CMS
 CVE-2018-18981
@@ -5183,7 +5183,7 @@ CVE-2018-18862
 CVE-2018-18861 (Buffer overflow in PCMan FTP Server 2.0.7 allows for remote 
code ...)
        NOT-FOR-US: PCMan FTP Server
 CVE-2018-18860 (A local privilege escalation vulnerability has been identified 
in the ...)
-       TODO: check
+       NOT-FOR-US: SwitchVPN for macOS
 CVE-2018-18859 (Multiple local privilege escalation vulnerabilities have been 
...)
        NOT-FOR-US: LiquidVPN client for macOS
 CVE-2018-18858 (Multiple local privilege escalation vulnerabilities have been 
...)
@@ -13001,9 +13001,9 @@ CVE-2018-15770
 CVE-2018-15769 (RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 
4.0.x ...)
        NOT-FOR-US: RSA BSAFE Micro Edition Suite
 CVE-2018-15768 (Dell OpenManage Network Manager versions prior to 6.5.0 
enabled ...)
-       TODO: check
+       NOT-FOR-US: Dell OpenManage Network Manager
 CVE-2018-15767 (The Dell OpenManage Network Manager virtual appliance versions 
prior ...)
-       TODO: check
+       NOT-FOR-US: Dell OpenManage Network Manager
 CVE-2018-15766 (On install, Dell Encryption versions prior 10.0.1 and Dell 
Endpoint ...)
        NOT-FOR-US: Dell
 CVE-2018-15765 (Dell EMC Secure Remote Services, versions prior to 3.32.00.08, 
...)
@@ -33622,9 +33622,9 @@ CVE-2018-7809 (An Unverified Password Change 
vulnerability exists in the embedde
 CVE-2018-7808
        RESERVED
 CVE-2018-7807 (Data Center Expert, versions 7.5.0 and earlier, allows for the 
upload ...)
-       TODO: check
+       NOT-FOR-US: Data Center Expert
 CVE-2018-7806 (Data Center Operation allows for the upload of a zip file from 
its ...)
-       TODO: check
+       NOT-FOR-US: Data Center Operation
 CVE-2018-7805
        RESERVED
 CVE-2018-7804
@@ -45167,7 +45167,7 @@ CVE-2018-3950
 CVE-2018-3949
        RESERVED
 CVE-2018-3948 (An exploitable denial-of-service vulnerability exists in the 
...)
-       TODO: check
+       NOT-FOR-US: TP-Link
 CVE-2018-3947 (An exploitable information disclosure vulnerability exists in 
the ...)
        NOT-FOR-US: Yi Home Camera
 CVE-2018-3946 (An exploitable use-after-free vulnerability exists in the 
JavaScript ...)
@@ -51110,9 +51110,9 @@ CVE-2018-1930
 CVE-2018-1929
        RESERVED
 CVE-2018-1928 (IBM StoredIQ 7.6.0 does not implement proper authorization of 
user ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1927 (IBM StoredIQ 7.6 is vulnerable to cross-site request forgery 
which ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1926
        RESERVED
 CVE-2018-1925
@@ -51172,7 +51172,7 @@ CVE-2018-1899
 CVE-2018-1898
        RESERVED
 CVE-2018-1897 (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5., and 11.1 
...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1896
        RESERVED
 CVE-2018-1895



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca75fa5cea276d75e713887872e12029fd194529

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca75fa5cea276d75e713887872e12029fd194529
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to