[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso Tue, 07 May 2019 13:38:30 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
41f451af by Salvatore Bonaccorso at 2019-05-07T20:34:07Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2315,7 +2315,7 @@ CVE-2019-10871 (An issue was discovered in Poppler 
0.74.0. There is a heap-based
 CVE-2019-10870
        RESERVED
 CVE-2019-10869 (Path Traversal and Unrestricted File Upload exists in the 
Ninja Forms  ...)
-       TODO: check
+       NOT-FOR-US: Ninja Forms plugin for WordPress
 CVE-2019-10867 (An issue was discovered in Pimcore before 5.7.1. An attacker 
with clas ...)
        NOT-FOR-US: Pimcore
 CVE-2019-10866
@@ -18912,9 +18912,9 @@ CVE-2019-4210 (IBM QRadar SIEM 7.3.2 could allow a user 
to bypass authentication
 CVE-2019-4209
        RESERVED
 CVE-2019-4208 (IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 is vulnerable 
to an X ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2019-4207 (IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 may disclose 
sensitiv ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2019-4206
        RESERVED
 CVE-2019-4205
@@ -79250,7 +79250,7 @@ CVE-2018-2010
 CVE-2018-2009 (IBM API Connect v2018.1 and 2018.4.1 is affected by an 
information dis ...)
        NOT-FOR-US: IBM
 CVE-2018-2008 (IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 could disclose 
sensit ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-2007 (IBM API Connect 2018.1 and 2018.4.1.2 uses weaker than expected 
crypto ...)
        NOT-FOR-US: IBM
 CVE-2018-2006 (IBM Robotic Process Automation with Automation Anywhere 11 
could allow ...)
@@ -79264,7 +79264,7 @@ CVE-2018-2003
 CVE-2018-2002
        RESERVED
 CVE-2018-2001 (IBM Cram Social Program Management 6.1.1, 6.2.0, 7.0.4, and 
7.0.5 is v ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-2000 (IBM Business Automation Workflow 18.0.0.0 and 18.0.0.1 is 
vulnerable t ...)
        NOT-FOR-US: IBM
 CVE-2018-1999 (IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 
18.0.0.2 coul ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/41f451af358726ba4738dd671c0b085e61d4bc26

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/41f451af358726ba4738dd671c0b085e61d4bc26
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to