[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso Wed, 12 Jun 2019 13:44:00 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
49875880 by Salvatore Bonaccorso at 2019-06-12T20:42:58Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31809,37 +31809,37 @@ CVE-2019-1019 (A security feature bypass 
vulnerability exists where a NETLOGON m
 CVE-2019-1018 (An elevation of privilege vulnerability exists when DirectX 
improperly ...)
        TODO: check
 CVE-2019-1017 (An elevation of privilege vulnerability exists in Windows when 
the Win ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1016 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1015 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1014 (An elevation of privilege vulnerability exists in Windows when 
the Win ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1013 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1012 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1011 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1010 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1009 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1008 (A security feature bypass vulnerability exists in Dynamics On 
Premise, ...)
        NOT-FOR-US: Microsoft Dynamics On-Premise
 CVE-2019-1007 (An elevation of privilege exists in Windows Audio Service, aka 
'Window ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1006
        RESERVED
 CVE-2019-1005 (A remote code execution vulnerability exists in the way the 
scripting  ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1004
        RESERVED
 CVE-2019-1003 (A remote code execution vulnerability exists in the way that 
the Chakr ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1002 (A remote code execution vulnerability exists in the way that 
the Chakr ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-1001
        RESERVED
 CVE-2019-1000 (An elevation of privilege vulnerability exists in Microsoft 
Azure Acti ...)
@@ -31847,7 +31847,7 @@ CVE-2019-1000 (An elevation of privilege vulnerability 
exists in Microsoft Azure
 CVE-2019-0999
        RESERVED
 CVE-2019-0998 (An elevation of privilege vulnerability exists when the Storage 
Servic ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0997
        RESERVED
 CVE-2019-0996 (A spoofing vulnerability exists in Azure DevOps Server when it 
imprope ...)
@@ -31857,27 +31857,27 @@ CVE-2019-0995 (A security feature bypass 
vulnerability exists when urlmon.dll im
 CVE-2019-0994
        RESERVED
 CVE-2019-0993 (A remote code execution vulnerability exists in the way that 
the Chakr ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0992 (A remote code execution vulnerability exists in the way that 
the Chakr ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0991 (A remote code execution vulnerability exists in the way that 
the Chakr ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0990 (An information disclosure vulnerability exists when the 
scripting engi ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0989 (A remote code execution vulnerability exists in the way that 
the Chakr ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0988 (A remote code execution vulnerability exists in the way that 
the scrip ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0987
        RESERVED
 CVE-2019-0986 (An elevation of privilege vulnerability exists when the Windows 
User P ...)
        TODO: check
 CVE-2019-0985 (A remote code execution vulnerability exists when the Microsoft 
Speech ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0984 (An elevation of privilege vulnerability exists when the Windows 
Common ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0983 (An elevation of privilege vulnerability exists when the Storage 
Servic ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0982 (A denial of service vulnerability exists when ASP.NET Core 
improperly  ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0981 (A denial of service vulnerability exists when .NET Framework or 
.NET C ...)
@@ -31889,7 +31889,7 @@ CVE-2019-0979 (A Cross-site Scripting (XSS) 
vulnerability exists when Azure DevO
 CVE-2019-0978
        RESERVED
 CVE-2019-0977 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0976 (A tampering vulnerability exists in the NuGet Package Manager 
for Linu ...)
        - nuget <not-affected> (Vulnerable code introduced in 5.0.0)
        NOTE: Fixed in NuGet.Client 5.0.2.
@@ -31898,11 +31898,11 @@ CVE-2019-0976 (A tampering vulnerability exists in 
the NuGet Package Manager for
 CVE-2019-0975
        RESERVED
 CVE-2019-0974 (A remote code execution vulnerability exists when the Windows 
Jet Data ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0973 (An elevation of privilege vulnerability exists in the Windows 
Installe ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0972 (This security update corrects a denial of service in the Local 
Securit ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0971 (An information disclosure vulnerability exists when Azure 
DevOps Serve ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0970
@@ -31910,7 +31910,7 @@ CVE-2019-0970
 CVE-2019-0969
        RESERVED
 CVE-2019-0968 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0967
        RESERVED
 CVE-2019-0966
@@ -31926,9 +31926,9 @@ CVE-2019-0962
 CVE-2019-0961 (An information disclosure vulnerability exists when the Windows 
GDI co ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0960 (An elevation of privilege vulnerability exists in Windows when 
the Win ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0959 (An elevation of privilege vulnerability exists when the Windows 
Common ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0958 (An elevation of privilege vulnerability exists when Microsoft 
SharePoi ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0957 (An elevation of privilege vulnerability exists when Microsoft 
SharePoi ...)
@@ -31950,7 +31950,7 @@ CVE-2019-0950 (A spoofing vulnerability exists when 
Microsoft SharePoint Server
 CVE-2019-0949 (A spoofing vulnerability exists when Microsoft SharePoint 
Server does  ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0948 (An information disclosure vulnerability exists in the Windows 
Event Vi ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0947 (A remote code execution vulnerability exists when the Microsoft 
Office ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0946 (A remote code execution vulnerability exists when the Microsoft 
Office ...)
@@ -31960,11 +31960,11 @@ CVE-2019-0945 (A remote code execution vulnerability 
exists when the Microsoft O
 CVE-2019-0944
        RESERVED
 CVE-2019-0943 (An elevation of privilege vulnerability exists when Windows 
improperly ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0942 (An elevation of privilege vulnerability exists in the Unified 
Write Fi ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0941 (A denial of service exists in Microsoft IIS Server when the 
optional r ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0940 (A remote code execution vulnerability exists in the way that 
Microsoft ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0939
@@ -32006,7 +32006,7 @@ CVE-2019-0922 (A remote code execution vulnerability 
exists in the way that the
 CVE-2019-0921 (An spoofing vulnerability exists when Internet Explorer 
improperly han ...)
        NOT-FOR-US: Microsoft
 CVE-2019-0920 (A remote code execution vulnerability exists in the way the 
scripting  ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0919
        RESERVED
 CVE-2019-0918 (A remote code execution vulnerability exists in the way the 
scripting  ...)
@@ -32028,7 +32028,7 @@ CVE-2019-0911 (A remote code execution vulnerability 
exists in the way the scrip
 CVE-2019-0910
        RESERVED
 CVE-2019-0909 (A remote code execution vulnerability exists when the Windows 
Jet Data ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2019-0908 (A remote code execution vulnerability exists when the Windows 
Jet Data ...)
        TODO: check
 CVE-2019-0907 (A remote code execution vulnerability exists when the Windows 
Jet Data ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/49875880f1d0d5e21891c61dce988dbe29bbca14

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/49875880f1d0d5e21891c61dce988dbe29bbca14
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to