Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
60d44aa1 by Salvatore Bonaccorso at 2019-10-05T22:13:10Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2019-17199 (www/getfile.php in WPO WebPageTest 19.04 on Windows allows
Directory T ...)
- TODO: check
+ NOT-FOR-US: WPO WebPageTest
CVE-2019-17198
RESERVED
CVE-2019-17197 (OpenEMR through 5.0.2 has SQL Injection in the Lifestyle
demographic f ...)
@@ -1880,7 +1880,7 @@ CVE-2019-16416
CVE-2019-16415
RESERVED
CVE-2019-16414 (A DOM based XSS in GFI Kerio Control v9.3.0 allows embedding
of malici ...)
- TODO: check
+ NOT-FOR-US: GFI Kerio Control
CVE-2019-16413 (An issue was discovered in the Linux kernel before 5.0.4. The
9p files ...)
- linux 4.19.37-1
[stretch] - linux 4.9.168-1
@@ -3616,7 +3616,7 @@ CVE-2019-15812
CVE-2019-15811 (In DomainMOD through 4.13, the parameter daterange in the file
reporti ...)
NOT-FOR-US: DomainMOD
CVE-2019-15810 (Insufficient sanitization during device search in Netdisco
2.042010 al ...)
- TODO: check
+ NOT-FOR-US: Netdisco
CVE-2019-15809 (Smart cards from the Athena SCS manufacturer, based on the
Atmel Toolb ...)
TODO: check
CVE-2019-15808
@@ -12597,7 +12597,7 @@ CVE-2019-13146 (The field_test gem 0.3.0 for Ruby has
unvalidated input. A metho
CVE-2019-13145
REJECTED
CVE-2019-13144 (myTinyTodo 1.3.3 through 1.4.3 allows CSV Injection. This is
fixed in ...)
- TODO: check
+ NOT-FOR-US: myTinyTodo
CVE-2019-13143 (An HTTP parameter pollution issue was discovered on Shenzhen
Dragon Br ...)
NOT-FOR-US: Shenzhen Dragon Brothers Fingerprint Bluetooth Round
Padlock FB50
CVE-2019-13142 (The RzSurroundVADStreamingService
(RzSurroundVADStreamingService.exe) ...)
@@ -15807,7 +15807,7 @@ CVE-2019-11934
CVE-2019-11933
RESERVED
CVE-2019-11932 (A double free vulnerability in the DDGifSlurp function in
decoding.c i ...)
- TODO: check
+ NOT-FOR-US: libpl_droidsonroids_gif
CVE-2019-11931
RESERVED
CVE-2019-11930
@@ -17719,7 +17719,7 @@ CVE-2019-11277 (Cloud Foundry NFS Volume Service, 1.7.x
versions prior to 1.7.11
CVE-2019-11276 (Pivotal Apps Manager, included in Pivotal Application Service
versions ...)
NOT-FOR-US: Pivotal
CVE-2019-11275 (Pivotal Application Manager, versions 666.0.x prior to
666.0.36, versi ...)
- TODO: check
+ NOT-FOR-US: Pivotal Application Manager
CVE-2019-11274 (Cloud Foundry UAA, versions prior to 74.0.0, is vulnerable to
an XSS a ...)
NOT-FOR-US: Cloud Foundry UAA
CVE-2019-11273 (Pivotal Container Services (PKS) versions 1.3.x prior to
1.3.7, and ve ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/60d44aa12be937cb1ec96fc948187db3d381f1fd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/60d44aa12be937cb1ec96fc948187db3d381f1fd
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
