Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
79f36e66 by Salvatore Bonaccorso at 2019-04-10T08:21:35Z
Process several NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9577,13 +9577,13 @@ CVE-2019-7363
CVE-2019-7362
RESERVED
CVE-2019-7361 (An attacker may convince a victim to open a malicious action
micro (.a ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2019-7360 (An exploitable heap overflow vulnerability in the DXF-parsing
function ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2019-7359 (An exploitable heap overflow vulnerability in the DXF-parsing
function ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2019-7358 (An exploitable heap overflow vulnerability in the DXF-parsing
function ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2019-7357
RESERVED
CVE-2019-7356
@@ -12667,7 +12667,7 @@ CVE-2019-6142
CVE-2019-6141
RESERVED
CVE-2019-6140 (A configuration issue has been discovered in Forcepoint Email
Security ...)
- TODO: check
+ NOT-FOR-US: Forcepoint Email Security
CVE-2019-6139 (Forcepoint User ID (FUID) server versions up to 1.2 have a
remote arbi ...)
NOT-FOR-US: Forcepoint User ID (FUID) server
CVE-2019-6138 (An issue has been found in libIEC61850 v1.3.1. Memory_malloc
and Memor ...)
@@ -14112,7 +14112,7 @@ CVE-2019-5587
CVE-2019-5586
RESERVED
CVE-2019-5585 (An improper access control vulnerability in FortiClientMac
before 6.0. ...)
- TODO: check
+ NOT-FOR-US: Fortiguard FortiClientMac
CVE-2019-5584
RESERVED
CVE-2019-5583
@@ -14256,11 +14256,11 @@ CVE-2019-5515 (VMware Workstation (15.x before
15.0.3, 14.x before 14.1.6) and F
CVE-2019-5514 (VMware VMware Fusion (11.x before 11.0.3) contains a security
vulnerab ...)
NOT-FOR-US: VMware
CVE-2019-5513 (VMware Horizon Connection Server (7.x before 7.8, 7.5.x before
7.5.2, ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2019-5512 (VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6)
running on ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2019-5511 (VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6)
running on ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2019-5510
RESERVED
CVE-2019-5509
@@ -27142,19 +27142,19 @@ CVE-2019-0864
CVE-2019-0863
RESERVED
CVE-2019-0862 (A remote code execution vulnerability exists in the way that
the scrip ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0861 (A remote code execution vulnerability exists in the way that
the Chakr ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0860 (A remote code execution vulnerability exists in the way that
the Chakr ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0859 (An elevation of privilege vulnerability exists in Windows when
the Win ...)
TODO: check
CVE-2019-0858 (A spoofing vulnerability exists in Microsoft Exchange Server
when Outl ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0857 (A spoofing vulnerability that could allow a security feature
bypass ex ...)
TODO: check
CVE-2019-0856 (A remote code execution vulnerability exists when Windows
improperly h ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0855
RESERVED
CVE-2019-0854
@@ -27178,7 +27178,7 @@ CVE-2019-0846 (A remote code execution vulnerability
exists when the Windows Jet
CVE-2019-0845 (A remote code execution vulnerability exists when the IOleCvt
interfac ...)
TODO: check
CVE-2019-0844 (An information disclosure vulnerability exists when the Windows
kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0843
RESERVED
CVE-2019-0842 (A remote code execution vulnerability exists in the way that
the VBScr ...)
@@ -27186,11 +27186,11 @@ CVE-2019-0842 (A remote code execution vulnerability
exists in the way that the
CVE-2019-0841 (An elevation of privilege vulnerability exists when Windows
AppX Deplo ...)
TODO: check
CVE-2019-0840 (An information disclosure vulnerability exists when the Windows
kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0839 (An information disclosure vulnerability exists when the
Terminal Servi ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0838 (An information disclosure vulnerability exists when Windows
Task Sched ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0837 (An information disclosure vulnerability exists when DirectX
improperly ...)
TODO: check
CVE-2019-0836 (An elevation of privilege vulnerability exists when Windows
improperly ...)
@@ -27204,25 +27204,25 @@ CVE-2019-0833 (An information disclosure
vulnerability exists when Microsoft Edg
CVE-2019-0832
RESERVED
CVE-2019-0831 (A cross-site-scripting (XSS) vulnerability exists when
Microsoft Share ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0830 (A cross-site-scripting (XSS) vulnerability exists when
Microsoft Share ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0829 (A remote code execution vulnerability exists in the way that
the Chakr ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0828 (A remote code execution vulnerability exists in Microsoft Excel
softwa ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0827 (A remote code execution vulnerability exists when the Microsoft
Office ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0826 (A remote code execution vulnerability exists when the Microsoft
Office ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0825 (A remote code execution vulnerability exists when the Microsoft
Office ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0824 (A remote code execution vulnerability exists when the Microsoft
Office ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0823 (A remote code execution vulnerability exists when the Microsoft
Office ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0822 (A remote code execution vulnerability exists in the way that
Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0821 (An information disclosure vulnerability exists in the way that
the Win ...)
NOT-FOR-US: Windows SMB Server
CVE-2019-0820
@@ -27232,7 +27232,7 @@ CVE-2019-0819
CVE-2019-0818
RESERVED
CVE-2019-0817 (A spoofing vulnerability exists in Microsoft Exchange Server
when Outl ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0816 (A security feature bypass exists in Azure SSH Keypairs, due to
a chang ...)
- cloud-init <unfixed> (low; bug #926043)
[buster] - cloud-init <no-dsa> (Doesn't affect default provisioning for
Azure, only limited use cases)
@@ -27247,11 +27247,11 @@ CVE-2019-0814 (An information disclosure
vulnerability exists when the win32k co
CVE-2019-0813 (An elevation of privilege vulnerability exists when Windows
Admin Cent ...)
TODO: check
CVE-2019-0812 (A remote code execution vulnerability exists in the way that
the Chakr ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0811
RESERVED
CVE-2019-0810 (A remote code execution vulnerability exists in the way that
the Chakr ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0809 (A remote code execution vulnerability exists when the Visual
Studio C+ ...)
NOT-FOR-US: Microsoft
CVE-2019-0808 (An elevation of privilege vulnerability exists in Windows when
the Win ...)
@@ -27259,7 +27259,7 @@ CVE-2019-0808 (An elevation of privilege vulnerability
exists in Windows when th
CVE-2019-0807
RESERVED
CVE-2019-0806 (A remote code execution vulnerability exists in the way that
the Chakr ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0805 (An elevation of privilege vulnerability exists when Windows
improperly ...)
TODO: check
CVE-2019-0804 (An information disclosure vulnerability exists in the way Azure
WaLinu ...)
@@ -27270,7 +27270,7 @@ CVE-2019-0803 (An elevation of privilege vulnerability
exists in Windows when th
CVE-2019-0802 (An information disclosure vulnerability exists when the Windows
GDI co ...)
TODO: check
CVE-2019-0801 (A remote code execution vulnerability exists when Microsoft
Office fai ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2019-0800
RESERVED
CVE-2019-0799
@@ -27500,13 +27500,13 @@ CVE-2019-0690 (A denial of service vulnerability
exists when Microsoft Hyper-V N
CVE-2019-0689 (An elevation of privilege vulnerability exists due to an
integer overf ...)
NOT-FOR-US: Microsoft Windows Subsystem for Linux
CVE-2019-0688 (An information disclosure vulnerability exists when the Windows
TCP/IP ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0687
RESERVED
CVE-2019-0686 (An elevation of privilege vulnerability exists in Microsoft
Exchange S ...)
NOT-FOR-US: Microsoft
CVE-2019-0685 (An elevation of privilege vulnerability exists in Windows when
the Win ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2019-0684
RESERVED
CVE-2019-0683 (An elevation of privilege vulnerability exists in Active
Directory For ...)
@@ -78736,7 +78736,7 @@ CVE-2018-1358
CVE-2018-1357
RESERVED
CVE-2018-1356 (A reflected Cross-Site-Scripting (XSS) vulnerability in
Fortinet Forti ...)
- TODO: check
+ NOT-FOR-US: Fortinet FortiSandbox
CVE-2018-1355 (An open redirect vulnerability in Fortinet FortiManager 6.0.0,
5.6.5 a ...)
NOT-FOR-US: Fortinet
CVE-2018-1354 (An improper access control vulnerability in Fortinet
FortiManager 6.0. ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/79f36e666984e10c35193cd4f700bd8fdfca786a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/79f36e666984e10c35193cd4f700bd8fdfca786a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
