Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
681080c0 by Moritz Muehlenhoff at 2019-09-12T20:20:00Z
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25,7 +25,7 @@ CVE-2019-16263
CVE-2019-16262
RESERVED
CVE-2019-16261 (Tripp Lite PDUMH15AT 12.04.0053 devices allow unauthenticated
POST req ...)
- TODO: check
+ NOT-FOR-US: Tripp Lite PDUMH15AT
CVE-2019-16260
RESERVED
CVE-2019-16259
@@ -33,9 +33,9 @@ CVE-2019-16259
CVE-2019-16258
RESERVED
CVE-2019-16257 (Some Motorola devices include the SIMalliance Toolbox Browser
(aka S@T ...)
- TODO: check
+ NOT-FOR-US: SIMalliance Toolbox Browser
CVE-2019-16256 (Some Samsung devices include the SIMalliance Toolbox Browser
(aka S@T ...)
- TODO: check
+ NOT-FOR-US: SIMalliance Toolbox Browser
CVE-2017-18633
RESERVED
CVE-2017-18632
@@ -158,7 +158,7 @@ CVE-2019-16275 (hostapd before 2.10 and wpa_supplicant
before 2.10 allow an inco
NOTE: https://www.openwall.com/lists/oss-security/2019/09/11/7
NOTE: https://w1.fi/security/2019-7/
CVE-2019-16238 (Afterlogic Aurora through 8.3.9-build-a3 has XSS that can be
leveraged ...)
- TODO: check
+ NOT-FOR-US: Afterlogic Aurora
CVE-2019-16237 (Dino before 2019-09-10 does not properly check the source of
an MAM me ...)
- dino-im 0.0.git20190911.2a70a4e-1
NOTE:
https://github.com/dino/dino/commit/307f16cc86dd2b95aa02ab8a85110e4a2d5e7363
@@ -17337,23 +17337,23 @@ CVE-2019-10402
CVE-2019-10401
RESERVED
CVE-2019-10400 (A sandbox bypass vulnerability in Jenkins Script Security
Plugin 1.62 ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10399 (A sandbox bypass vulnerability in Jenkins Script Security
Plugin 1.62 ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10398 (Jenkins Beaker Builder Plugin 1.9 and earlier stored
credentials unenc ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10397 (Jenkins Aqua Security Serverless Scanner Plugin 1.0.4 and
earlier tran ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10396 (Jenkins Dashboard View Plugin 2.11 and earlier did not escape
build de ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10395 (Jenkins Build Environment Plugin 1.6 and earlier did not
escape variab ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10394 (A sandbox bypass vulnerability in Jenkins Script Security
Plugin 1.62 ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10393 (A sandbox bypass vulnerability in Jenkins Script Security
Plugin 1.62 ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10392 (Jenkins Git Client Plugin 2.8.4 and earlier did not properly
restrict ...)
- TODO: check
+ NOT-FOR-US: Jenkins plugin
CVE-2019-10391 (Jenkins IBM Application Security on Cloud Plugin 1.2.4 and
earlier tra ...)
NOT-FOR-US: IBM
CVE-2019-10390 (A sandbox bypass vulnerability in Jenkins Splunk Plugin 1.7.4
and earl ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/681080c05f8f44ab970ebd0cd5bb1238369fd48c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/681080c05f8f44ab970ebd0cd5bb1238369fd48c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
