[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed, 29 May 2019 01:48:59 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
4e9fd8b6 by Salvatore Bonaccorso at 2019-05-29T08:47:37Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3546,11 +3546,11 @@ CVE-2019-10969
 CVE-2019-10968
        RESERVED
 CVE-2019-10967 (In Emerson Ovation OCR400 Controller 3.3.1 and earlier, a 
stack-based  ...)
-       TODO: check
+       NOT-FOR-US: Emerson
 CVE-2019-10966
        RESERVED
 CVE-2019-10965 (In Emerson Ovation OCR400 Controller 3.3.1 and earlier, a 
heap-based b ...)
-       TODO: check
+       NOT-FOR-US: Emerson
 CVE-2019-10964
        RESERVED
 CVE-2019-10963
@@ -13192,9 +13192,9 @@ CVE-2019-7395 (In ImageMagick before 7.0.8-25, a memory 
leak exists in WritePSDC
        NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/8a43abefb38c5e29138e1c9c515b313363541c06
        NOTE: https://github.com/ImageMagick/ImageMagick/issues/1451
 CVE-2019-7394 (A privilege escalation vulnerability in the administrative user 
interf ...)
-       TODO: check
+       NOT-FOR-US: CA Technologies
 CVE-2019-7393 (A UI redress vulnerability in the administrative user interface 
of CA  ...)
-       TODO: check
+       NOT-FOR-US: CA Technologies
 CVE-2019-7392 (An improper authentication vulnerability in CA Privileged 
Access Manag ...)
        NOT-FOR-US: CA Privileged Access Manager
 CVE-2019-7391 (ZyXEL VMG3312-B10B DSL-491HNU-B1B v2 devices allow 
login/login-page.cg ...)
@@ -17831,7 +17831,7 @@ CVE-2019-5591
 CVE-2019-5590
        RESERVED
 CVE-2019-5589 (An Unsafe Search Path vulnerability in FortiClient Online 
Installer (W ...)
-       TODO: check
+       NOT-FOR-US: FortiGuard
 CVE-2019-5588
        RESERVED
 CVE-2019-5587
@@ -27657,7 +27657,7 @@ CVE-2018-1000862 (An information exposure vulnerability 
exists in Jenkins 2.153
 CVE-2018-1000861 (A code execution vulnerability exists in the Stapler web 
framework use ...)
        NOT-FOR-US: Jenkins
 CVE-2018-20008 (iBall Baton iB-WRB302N20122017 devices have improper access 
control ov ...)
-       TODO: check
+       NOT-FOR-US: iBall Baton iB-WRB302N20122017 devices
 CVE-2018-20007 (Yeelight Smart AI Speaker 3.3.10_0074 devices have improper 
access con ...)
        NOT-FOR-US: Yeelight Smart AI Speaker devices
 CVE-2018-20006 (An issue was discovered in PHPok v5.0.055. There is a Stored 
XSS vulne ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4e9fd8b672958e46cae7ec121af4e1dd6511cac8

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4e9fd8b672958e46cae7ec121af4e1dd6511cac8
You're receiving this email because of your account on salsa.debian.org.


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to