Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f145c15f by Salvatore Bonaccorso at 2019-01-09T20:26:41Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9,7 +9,7 @@ CVE-2019-5750
CVE-2019-5749
RESERVED
CVE-2019-5748 (In Traccar Server version 4.2,
protocol/SpotProtocolDecoder.java might ...)
- TODO: check
+ NOT-FOR-US: Traccar Server
CVE-2019-5747 (An issue was discovered in BusyBox through 1.30.0. An out of
bounds ...)
- busybox <not-affected> (Incomplete fix for CVE-2018-20679 not applied)
NOTE: https://bugs.busybox.net/show_bug.cgi?id=11506
@@ -35,7 +35,7 @@ CVE-2019-5738
CVE-2019-5737
RESERVED
CVE-2018-20680 (Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field.
...)
- TODO: check
+ NOT-FOR-US: Frog CMS
CVE-2018-20679 (An issue was discovered in BusyBox before 1.30.0. An out of
bounds read ...)
- busybox <unfixed>
NOTE: https://bugs.busybox.net/show_bug.cgi?id=11506
@@ -14254,29 +14254,29 @@ CVE-2019-0251
CVE-2019-0250
RESERVED
CVE-2019-0249 (Under certain conditions SAP Landscape Management (VCM 3.0)
allows an ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0248 (Under certain conditions SAP Gateway of ABAP Application Server
(fixed ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0247 (SAP Cloud Connector, before version 2.11.3, allows an attacker
to ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0246 (SAP Cloud Connector, before version 2.11.3, does not perform
any ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0245 (SAP CRM WebClient UI (fixed in SAPSCORE 1.12; S4FND 1.02;
WEBCUIF ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0244 (SAP CRM WebClient UI (fixed in SAPSCORE 1.12; S4FND 1.02;
WEBCUIF ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0243 (Under some circumstances, masterdata maintenance in SAP
BW/4HANA ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0242
RESERVED
CVE-2019-0241 (SAP Work and Inventory Manager (Agentry_SDK , before 7.0, 7.1)
allows ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0240 (SAP Business Objects Mobile for Android (before 6.3.5)
application ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0239
RESERVED
CVE-2019-0238 (SAP Commerce (previously known as SAP Hybris Commerce), before
version ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2019-0237
RESERVED
CVE-2019-0236
@@ -61340,7 +61340,7 @@ CVE-2018-2501
CVE-2018-2500 (Under certain conditions SAP Mobile Secure Android client
(before ...)
NOT-FOR-US: SAP
CVE-2018-2499 (A security weakness in SAP Financial Consolidation Cube
Designer ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2498
RESERVED
CVE-2018-2497 (The security audit log of SAP HANA, versions 1.0 and 2.0, does
not log ...)
@@ -61370,7 +61370,7 @@ CVE-2018-2486 (SAP Marketing (UICUAN (1.20, 1.30,
1.40), SAPSCORE (1.13, 1.14))
CVE-2018-2485 (It is possible for a malicious application or malware to
execute ...)
NOT-FOR-US: SAP
CVE-2018-2484 (SAP Enterprise Financial Services (fixed in SAPSCORE 1.13,
1.14, 1.15; ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2483 (HTTP Verb Tampering is possible in SAP BusinessObjects Business
...)
NOT-FOR-US: SAP
CVE-2018-2482 (SAP Mobile Secure Android Application, Mobile-secure.apk
Android ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f145c15f6cb540db819f54e20926c9733a1ccf6b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f145c15f6cb540db819f54e20926c9733a1ccf6b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
