Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6010d912 by Salvatore Bonaccorso at 2019-06-28T08:26:04Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -975,11 +975,11 @@ CVE-2019-12585 (Apcupsd 0.3.91_5, as used in pfSense
through 2.4.4-RELEASE-p3 an
CVE-2019-12584 (Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3
and othe ...)
- apcupsd <not-affected> (Vulnerable code in pfSense-specific status
page)
CVE-2019-12583 (Missing Access Control in the "Free Time" component of several
Zyxel U ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-12582
REJECTED
CVE-2019-12581 (A reflective Cross-site scripting (XSS) vulnerability in the
free_time ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2019-12580
RESERVED
CVE-2019-12579
@@ -3506,7 +3506,7 @@ CVE-2019-11585
CVE-2019-11584
RESERVED
CVE-2019-11583 (The issue searching component in Jira before version 8.1.0
allows remo ...)
- TODO: check
+ NOT-FOR-US: issue searching component in Jira
CVE-2019-11582 (An argument injection vulnerability in Atlassian Sourcetree
for Window ...)
NOT-FOR-US: Atlassian Sourcetree
CVE-2019-11581
@@ -15416,13 +15416,13 @@ CVE-2019-7230 (The ABB IDAL FTP server mishandles
format strings in a username d
CVE-2019-7229 (The ABB CP635 HMI uses two different transmission methods to
upgrade i ...)
NOT-FOR-US: ABB CP635 HMI
CVE-2019-7228 (The ABB IDAL HTTP server mishandles format strings in a
username or co ...)
- TODO: check
+ NOT-FOR-US: ABB IDAL HTTP server
CVE-2019-7227 (In the ABB IDAL FTP server, an authenticated attacker can
traverse to ...)
- TODO: check
+ NOT-FOR-US: ABB IDAL FTP server
CVE-2019-7226 (The ABB IDAL HTTP server CGI interface contains a URL that
allows an u ...)
- TODO: check
+ NOT-FOR-US: ABB IDAL HTTP server
CVE-2019-7225 (The ABB HMI components implement hidden administrative accounts
that a ...)
- TODO: check
+ NOT-FOR-US: ABB HMI components
CVE-2019-7224
RESERVED
CVE-2019-7223 (InvoicePlane 1.5 has stored XSS via the
index.php/invoices/ajax/save i ...)
@@ -23791,13 +23791,13 @@ CVE-2019-3633
CVE-2019-3632 (Directory Traversal vulnerability in McAfee Enterprise Security
Manage ...)
TODO: check
CVE-2019-3631 (Command Injection vulnerability in McAfee Enterprise Security
Manager ...)
- TODO: check
+ NOT-FOR-US: McAfee
CVE-2019-3630 (Command Injection vulnerability in McAfee Enterprise Security
Manager ...)
- TODO: check
+ NOT-FOR-US: McAfee
CVE-2019-3629 (Application protection bypass vulnerability in McAfee
Enterprise Secur ...)
- TODO: check
+ NOT-FOR-US: McAfee
CVE-2019-3628 (Privilege escalation in McAfee Enterprise Security Manager
(ESM) 11.x ...)
- TODO: check
+ NOT-FOR-US: McAfee
CVE-2019-3627
RESERVED
CVE-2019-3626
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/6010d9123f010344c5ba21939500ffc1c1bc9e67
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/6010d9123f010344c5ba21939500ffc1c1bc9e67
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
