[Git][security-tracker-team/security-tracker][master] NFUs

Fri, 15 Mar 2019 01:18:11 -0700 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
ba8087e6 by Moritz Muehlenhoff at 2019-03-15T08:17:13Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2019-9830
        RESERVED
 CVE-2019-9829 (Maccms 10 allows remote attackers to execute arbitrary PHP code 
by ...)
-       TODO: check
+       NOT-FOR-US: Maccms
 CVE-2019-9828
        RESERVED
 CVE-2019-9827
@@ -9,7 +9,7 @@ CVE-2019-9827
 CVE-2019-9826
        RESERVED
 CVE-2019-9825 (FeiFeiCMS 4.1.190209 allows remote attackers to upload and 
execute ...)
-       TODO: check
+       NOT-FOR-US: FeiFeiCMS
 CVE-2019-9824
        RESERVED
 CVE-2019-9823
@@ -87,7 +87,7 @@ CVE-2019-9788
 CVE-2019-9786
        RESERVED
 CVE-2019-9785 (gitnote 3.1.0 allows remote attackers to execute arbitrary code 
via a ...)
-       TODO: check
+       NOT-FOR-US: gitnote
 CVE-2019-9784
        RESERVED
 CVE-2019-9783
@@ -99,7 +99,7 @@ CVE-2019-9781
 CVE-2019-9780
        RESERVED
 CVE-2018-20801 (In js/parts/SvgRenderer.js in Highcharts JS before 6.1.0, the 
use of ...)
-       TODO: check
+       NOT-FOR-US: Highcharts JS
 CVE-2019-9787 (WordPress before 5.1.1 does not properly filter comment 
content, ...)
        - wordpress 5.1.1+dfsg1-1 (bug #924546)
        NOTE: https://blog.ripstech.com/2019/wordpress-csrf-to-rce/
@@ -9375,17 +9375,17 @@ CVE-2019-5924 (Cross-site request forgery (CSRF) 
vulnerability in Smart Forms 2.
 CVE-2019-5923 (Directory traversal vulnerability in iChain Insurance Wallet 
App for ...)
        NOT-FOR-US: iChain Insurance Wallet App for iOS
 CVE-2019-5922 (Untrusted search path vulnerability in The installer of 
Microsoft ...)
-       TODO: check
+       NOT-FOR-US: Microsoft 
 CVE-2019-5921 (Untrusted search path vulnerability in Windows 7 allows an 
attacker to ...)
        NOT-FOR-US: Microsoft Windows
 CVE-2019-5920 (Cross-site request forgery (CSRF) vulnerability in FormCraft 
1.2.1 and ...)
-       TODO: check
+       NOT-FOR-US: FormCraft
 CVE-2019-5919 (An incomplete cryptography of the data store function by using 
hidden ...)
-       TODO: check
+       NOT-FOR-US: Nablarch
 CVE-2019-5918 (Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to 
conduct XML ...)
-       TODO: check
+       NOT-FOR-US: Nablarch
 CVE-2019-5917 (azure-umqtt-c (available through GitHub prior to 2017 October 
6) ...)
-       TODO: check
+       NOT-FOR-US: azure-umqtt-c
 CVE-2019-5916 (Input validation issue in POWER EGG(Ver 2.0.1, Ver 2.02 Patch 3 
and ...)
        NOT-FOR-US: POWER EGG
 CVE-2019-5915 (Open redirect vulnerability in OpenAM (Open Source Edition) 
13.0 ...)
@@ -14026,7 +14026,7 @@ CVE-2019-3787
 CVE-2019-3786
        RESERVED
 CVE-2019-3785 (Cloud Foundry Cloud Controller, versions prior to 1.78.0, 
contain an ...)
-       TODO: check
+       NOT-FOR-US: Cloud Foundry
 CVE-2019-3784 (Cloud Foundry Stratos, versions prior to 2.3.0, contains an 
insecure ...)
        NOT-FOR-US: Cloud Foundry Stratos
 CVE-2019-3783 (Cloud Foundry Stratos, versions prior to 2.3.0, deploys with a 
public ...)
@@ -14917,7 +14917,7 @@ CVE-2018-20622 (JasPer 2.0.14 has a memory leak in 
base/jas_malloc.c in libjaspe
        - jasper <removed>
        NOTE: https://github.com/mdadams/jasper/issues/193
 CVE-2018-20621 (An issue was discovered in Microvirt MEmu 6.0.6. The 
MemuService.exe ...)
-       TODO: check
+       NOT-FOR-US: Microvirt MEmu
 CVE-2018-20620
        RESERVED
 CVE-2018-20619
@@ -24491,7 +24491,7 @@ CVE-2019-0273
 CVE-2019-0272
        RESERVED
 CVE-2019-0271 (ABAP Server (used in NetWeaver and Suite/ERP) and ABAP Platform 
does ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2019-0270 (ABAP Server of SAP NetWeaver and ABAP Platform fail to perform 
...)
        NOT-FOR-US: SAP
 CVE-2019-0269 (SAP BusinessObjects Business Intelligence Platform (BI 
Workspace), ...)
@@ -25583,7 +25583,7 @@ CVE-2019-0131
 CVE-2019-0130
        RESERVED
 CVE-2019-0129 (Improper permissions for Intel(R) USB 3.0 Creator Utility all 
versions ...)
-       TODO: check
+       NOT-FOR-US: Intel
 CVE-2019-0128
        RESERVED
 CVE-2019-0127 (Logic error in the installer for Intel(R) OpenVINO(TM) 2018 R3 
and ...)
@@ -44075,7 +44075,7 @@ CVE-2018-12226
 CVE-2018-12225
        RESERVED
 CVE-2018-12224 (Buffer leakage in igdkm64.sys in Intel(R) Graphics Driver for 
Windows* ...)
-       TODO: check
+       NOT-FOR-US: Intel
 CVE-2018-12223 (Insufficient access control in User Mode Driver in Intel(R) 
Graphics ...)
        TODO: check
 CVE-2018-12222 (Insufficient input validation in Kernel Mode Driver in 
Intel(R) ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ba8087e6e365121930031fcfb2e06b206dda4296

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ba8087e6e365121930031fcfb2e06b206dda4296
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to