[Git][security-tracker-team/security-tracker][master] Process NFUs

Sun, 16 Dec 2018 12:27:07 -0800 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
0b740cce by Salvatore Bonaccorso at 2018-12-16T20:25:34Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11,15 +11,15 @@ CVE-2018-20163
 CVE-2018-20162
        RESERVED
 CVE-2018-20161 (A design flaw in the BlinkForHome (aka Blink For Home) Sync 
Module ...)
-       TODO: check
+       NOT-FOR-US: BlinkForHome (aka Blink For Home) Sync Module
 CVE-2018-20160
        RESERVED
 CVE-2018-20159 (i-doit open 1.11.2 allows Remote Code Execution because ZIP 
archives ...)
-       TODO: check
+       NOT-FOR-US: i-doit
 CVE-2018-20158
        RESERVED
 CVE-2018-20157 (The data import functionality in OpenRefine through 3.1 allows 
an XML ...)
-       TODO: check
+       NOT-FOR-US: OpenRefine
 CVE-2018-20156 (The WP Maintenance Mode plugin before 2.0.7 for WordPress 
allows remote ...)
        NOT-FOR-US: WordPress plugin wp-maintenance-mode
 CVE-2018-20155 (The WP Maintenance Mode plugin before 2.0.7 for WordPress 
allows remote ...)
@@ -2064,7 +2064,7 @@ CVE-2018-20140
 CVE-2018-20139
        RESERVED
 CVE-2018-20138 (PHP Scripts Mall Entrepreneur B2B Script 3.0.6 allows Stored 
XSS via ...)
-       TODO: check
+       NOT-FOR-US: PHP Scripts Mall Entrepreneur B2B Script
 CVE-2018-20137 (XSS exists in FUEL CMS 1.4.3 via the Page title, Meta 
description, or ...)
        NOT-FOR-US: FUEL CMS
 CVE-2018-20136 (XSS exists in FUEL CMS 1.4.3 via the Header or Body in the 
Layout ...)
@@ -2167,7 +2167,7 @@ CVE-2018-20096 (There is a heap-based buffer over-read in 
the Exiv2::tEXtToDataB
 CVE-2018-20095 (An issue was discovered in EnsureCapacity in Core/Ap4Array.h 
in Bento4 ...)
        NOT-FOR-US: Bento4
 CVE-2018-20094 (An issue was discovered in XXL-CONF 1.6.0. There is a path 
traversal ...)
-       TODO: check
+       NOT-FOR-US: XXL-CONF
 CVE-2018-20093
        RESERVED
 CVE-2018-20092
@@ -3233,7 +3233,7 @@ CVE-2018-19993
 CVE-2018-19992
        RESERVED
 CVE-2018-19991 (VeryNginx 0.3.3 allows remote attackers to bypass the Web 
Application ...)
-       TODO: check
+       NOT-FOR-US: VeryNginx
 CVE-2018-19990
        RESERVED
 CVE-2018-19989



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b740ccee71eaf29695d1d36b55940a956e19da4

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b740ccee71eaf29695d1d36b55940a956e19da4
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to