Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
04eb1748 by Salvatore Bonaccorso at 2019-08-16T19:20:31Z
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15,7 +15,7 @@ CVE-2019-15110
CVE-2019-15109
RESERVED
CVE-2019-15108 (An issue was discovered in WSO2 API Manager 2.6.0 before
WSO2-CARBON-P ...)
- TODO: check
+ NOT-FOR-US: WSO2 API Manager
CVE-2019-15107 (An issue was discovered in Webmin through 1.920. The parameter
old in ...)
- webmin <removed>
CVE-2019-15106 (An issue was discovered in Zoho ManageEngine OpManager through
12.4x. ...)
@@ -37,7 +37,7 @@ CVE-2019-15097
CVE-2019-15096
RESERVED
CVE-2019-15095 (DWSurvey through 2019-07-22 has reflected XSS via the
design/qu-multi- ...)
- TODO: check
+ NOT-FOR-US: DWSurvey
CVE-2019-15094
RESERVED
CVE-2019-15093
@@ -1654,7 +1654,7 @@ CVE-2019-14520
CVE-2019-14519
RESERVED
CVE-2019-14518 (** DISPUTED ** Evolution CMS 2.0.x allows XSS via a
description and ne ...)
- TODO: check
+ NOT-FOR-US: Evolution CMS
CVE-2019-14517 (pandao Editor.md 1.5.0 allows XSS via the Javas&#99;ript:
string. ...)
NOT-FOR-US: pandao Editor.md
CVE-2019-14516 (The mAadhaar application 1.2.7 for Android lacks SSL
Certificate Valid ...)
@@ -2467,7 +2467,7 @@ CVE-2019-14424
CVE-2019-14423
RESERVED
CVE-2019-14422 (An issue was discovered in in TortoiseSVN 1.12.1. The Tsvncmd:
URI han ...)
- TODO: check
+ NOT-FOR-US: TortoiseSVN
CVE-2019-14421
RESERVED
CVE-2019-14420
@@ -5628,19 +5628,19 @@ CVE-2019-13518
CVE-2019-13517
RESERVED
CVE-2019-13516 (In OSIsoft PI Web API and prior, the affected product is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: OSIsoft LLC
CVE-2019-13515 (OSIsoft PI Web API 2018 and prior may allow disclosure of
sensitive in ...)
- TODO: check
+ NOT-FOR-US: OSIsoft LLC
CVE-2019-13514 (In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and
prior, ...)
- TODO: check
+ NOT-FOR-US: Delta Industrial Automation DOPSoft
CVE-2019-13513 (In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and
prior, ...)
- TODO: check
+ NOT-FOR-US: Delta Industrial Automation DOPSoft
CVE-2019-13512 (Fuji Electric FRENIC Loader 3.5.0.0 and prior is vulnerable to
an out- ...)
- TODO: check
+ NOT-FOR-US: Fuji Electric FRENIC Loader
CVE-2019-13511 (Rockwell Automation Arena Simulation Software versions
16.00.00 and ea ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation Arena Simulation Software
CVE-2019-13510 (Rockwell Automation Arena Simulation Software versions
16.00.00 and ea ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation Arena Simulation Software
CVE-2019-13509 (In Docker CE and EE before 18.09.8 (as well as Docker EE
before 17.06. ...)
- docker.io 18.09.1+dfsg1-8 (bug #932673)
[buster] - docker.io <no-dsa> (Minor issue)
@@ -7519,7 +7519,7 @@ CVE-2019-12811
CVE-2019-12810
RESERVED
CVE-2019-12809 (Yes24ViewerX ActiveX Control 1.0.327.50126 and earlier
versions contai ...)
- TODO: check
+ NOT-FOR-US: Yes24ViewerX ActiveX Control
CVE-2019-12808 (ALTOOLS update service 18.1 and earlier versions contains a
local priv ...)
NOT-FOR-US: ALTOOLS update service
CVE-2019-12807 (Alzip 10.83 and earlier version contains a stack-based buffer
overflow ...)
@@ -7596,9 +7596,9 @@ CVE-2019-XXXX [security issues fixed in 1.8.5]
CVE-2019-12793
RESERVED
CVE-2019-12792 (A command injection vulnerability in UploadHandler.php in
Vesta Contro ...)
- TODO: check
+ NOT-FOR-US: Vesta Control Panel
CVE-2019-12791 (A directory traversal vulnerability in the v-list-user script
in Vesta ...)
- TODO: check
+ NOT-FOR-US: Vesta Control Panel
CVE-2019-12790 (In radare2 through 3.5.1, there is a heap-based buffer
over-read in th ...)
- radare2 <unfixed> (bug #930344)
[buster] - radare2 <no-dsa> (Minor issue)
@@ -18563,13 +18563,13 @@ CVE-2019-9015 (A Path Traversal vulnerability was
discovered in MOPCMS through 2
CVE-2019-9014
RESERVED
CVE-2019-9013 (An issue was discovered in 3S-Smart CODESYS V3 products. The
applicati ...)
- TODO: check
+ NOT-FOR-US: 3S-Smart CODESYS V3
CVE-2019-9012 (An issue was discovered in 3S-Smart CODESYS V3 products. A
crafted com ...)
- TODO: check
+ NOT-FOR-US: 3S-Smart CODESYS V3
CVE-2019-9011
RESERVED
CVE-2019-9010 (An issue was discovered in 3S-Smart CODESYS V3 products. The
CODESYS G ...)
- TODO: check
+ NOT-FOR-US: 3S-Smart CODESYS V3
CVE-2019-9009
RESERVED
CVE-2019-9008
@@ -30588,7 +30588,7 @@ CVE-2019-3976
CVE-2019-3975
RESERVED
CVE-2019-3974 (Nessus 8.5.2 and earlier on Windows platforms were found to
contain an ...)
- TODO: check
+ NOT-FOR-US: Nessus
CVE-2019-3973 (Comodo Antivirus versions 11.0.0.6582 and below are vulnerable
to Deni ...)
NOT-FOR-US: Comodo Antivirus
CVE-2019-3972 (Comodo Antivirus versions 12.0.0.6810 and below are vulnerable
to Deni ...)
@@ -32109,9 +32109,9 @@ CVE-2019-3420
CVE-2019-3419
RESERVED
CVE-2019-3418 (All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are
impacted ...)
- TODO: check
+ NOT-FOR-US: ZTE
CVE-2019-3417 (All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are
impacted ...)
- TODO: check
+ NOT-FOR-US: ZTE
CVE-2019-3416
RESERVED
CVE-2019-3415 (ZTE MW NR8000V2.4.4.03 and NR8000V2.4.4.04 are impacted by path
traver ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/04eb17484ec1975720294b955ca22b9436a47cee
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/04eb17484ec1975720294b955ca22b9436a47cee
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
