[Git][security-tracker-team/security-tracker][master] Process NFUs

Sat, 05 Oct 2019 15:14:07 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
60d44aa1 by Salvatore Bonaccorso at 2019-10-05T22:13:10Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2019-17199 (www/getfile.php in WPO WebPageTest 19.04 on Windows allows 
Directory T ...)
-       TODO: check
+       NOT-FOR-US: WPO WebPageTest
 CVE-2019-17198
        RESERVED
 CVE-2019-17197 (OpenEMR through 5.0.2 has SQL Injection in the Lifestyle 
demographic f ...)
@@ -1880,7 +1880,7 @@ CVE-2019-16416
 CVE-2019-16415
        RESERVED
 CVE-2019-16414 (A DOM based XSS in GFI Kerio Control v9.3.0 allows embedding 
of malici ...)
-       TODO: check
+       NOT-FOR-US: GFI Kerio Control
 CVE-2019-16413 (An issue was discovered in the Linux kernel before 5.0.4. The 
9p files ...)
        - linux 4.19.37-1
        [stretch] - linux 4.9.168-1
@@ -3616,7 +3616,7 @@ CVE-2019-15812
 CVE-2019-15811 (In DomainMOD through 4.13, the parameter daterange in the file 
reporti ...)
        NOT-FOR-US: DomainMOD
 CVE-2019-15810 (Insufficient sanitization during device search in Netdisco 
2.042010 al ...)
-       TODO: check
+       NOT-FOR-US: Netdisco
 CVE-2019-15809 (Smart cards from the Athena SCS manufacturer, based on the 
Atmel Toolb ...)
        TODO: check
 CVE-2019-15808
@@ -12597,7 +12597,7 @@ CVE-2019-13146 (The field_test gem 0.3.0 for Ruby has 
unvalidated input. A metho
 CVE-2019-13145
        REJECTED
 CVE-2019-13144 (myTinyTodo 1.3.3 through 1.4.3 allows CSV Injection. This is 
fixed in  ...)
-       TODO: check
+       NOT-FOR-US: myTinyTodo
 CVE-2019-13143 (An HTTP parameter pollution issue was discovered on Shenzhen 
Dragon Br ...)
        NOT-FOR-US: Shenzhen Dragon Brothers Fingerprint Bluetooth Round 
Padlock FB50
 CVE-2019-13142 (The RzSurroundVADStreamingService 
(RzSurroundVADStreamingService.exe)  ...)
@@ -15807,7 +15807,7 @@ CVE-2019-11934
 CVE-2019-11933
        RESERVED
 CVE-2019-11932 (A double free vulnerability in the DDGifSlurp function in 
decoding.c i ...)
-       TODO: check
+       NOT-FOR-US: libpl_droidsonroids_gif
 CVE-2019-11931
        RESERVED
 CVE-2019-11930
@@ -17719,7 +17719,7 @@ CVE-2019-11277 (Cloud Foundry NFS Volume Service, 1.7.x 
versions prior to 1.7.11
 CVE-2019-11276 (Pivotal Apps Manager, included in Pivotal Application Service 
versions ...)
        NOT-FOR-US: Pivotal
 CVE-2019-11275 (Pivotal Application Manager, versions 666.0.x prior to 
666.0.36, versi ...)
-       TODO: check
+       NOT-FOR-US: Pivotal Application Manager
 CVE-2019-11274 (Cloud Foundry UAA, versions prior to 74.0.0, is vulnerable to 
an XSS a ...)
        NOT-FOR-US: Cloud Foundry UAA
 CVE-2019-11273 (Pivotal Container Services (PKS) versions 1.3.x prior to 
1.3.7, and ve ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/60d44aa12be937cb1ec96fc948187db3d381f1fd

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/60d44aa12be937cb1ec96fc948187db3d381f1fd
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to