Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cab61a94 by Salvatore Bonaccorso at 2019-10-18T20:23:26Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2895,7 +2895,7 @@ CVE-2019-17395 (In the Rapid Gator application 0.7.1 for
Android, the username a
CVE-2019-17394 (In the Seesaw Parent and Family application 6.2.5 for Android,
the use ...)
NOT-FOR-US: Seesaw Parent and Family application
CVE-2019-17393 (The Customer's Tomedo Server in Version 1.7.3 communicates to
the Vend ...)
- TODO: check
+ NOT-FOR-US: Tomedo Server
CVE-2019-17392
RESERVED
CVE-2019-17391
@@ -2952,7 +2952,7 @@ CVE-2019-17369 (OTCMS v3.85 has CSRF in the
admin/member_deal.php Admin Panel pa
CVE-2019-17368 (S-CMS v1.5 has XSS in tpl.php via the member/member_login.php
from par ...)
NOT-FOR-US: S-CMS
CVE-2019-17367 (OpenWRT firmware version 18.06.4 is vulnerable to CSRF via
wireless/ra ...)
- TODO: check
+ NOT-FOR-US: OpenWRT
CVE-2019-17366 (Citrix Application Delivery Management (ADM) 12.1 before build
54.13 h ...)
NOT-FOR-US: Citrix
CVE-2019-17365 (Nix through 2.3 allows local users to gain access to an
arbitrary user ...)
@@ -3272,7 +3272,7 @@ CVE-2019-17209
CVE-2019-17208
RESERVED
CVE-2019-17207 (A reflected XSS vulnerability was found in
includes/admin/table-printe ...)
- TODO: check
+ NOT-FOR-US: broken-link-checker (aka Broken Link Checker) plugin for
WordPress
CVE-2019-17206 (Uncontrolled deserialization of a pickled object in models.py
in Frost ...)
NOT-FOR-US: Frost Ming rediswrapper
CVE-2019-17205 (TeamPass 2.1.27.36 allows Stored XSS by placing a payload in
the usern ...)
@@ -3931,7 +3931,7 @@ CVE-2019-16928 (Exim 4.92 through 4.92.2 allows remote
code execution, a differe
NOTE: https://bugs.exim.org/show_bug.cgi?id=2449
NOTE:
https://git.exim.org/exim.git/commit/478effbfd9c3cc5a627fc671d4bf94d13670d65f
CVE-2019-16919 (Harbor API has a Broken Access Control vulnerability. The
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Harbor
CVE-2019-16918
RESERVED
CVE-2019-16917 (WiKID Enterprise 2FA (two factor authentication) Enterprise
Server thr ...)
@@ -6745,9 +6745,9 @@ CVE-2019-15902 (A backporting error was discovered in the
Linux stable/longterm
[jessie] - linux <not-affected> (Bug never introduced)
NOTE:
https://grsecurity.net/teardown_of_a_failed_linux_lts_spectre_fix.php
CVE-2019-15901 (An issue was discovered in slicer69 doas before 6.2 on certain
platfor ...)
- TODO: check
+ NOT-FOR-US: slicer69 doas
CVE-2019-15900 (An issue was discovered in slicer69 doas before 6.2 on certain
platfor ...)
- TODO: check
+ NOT-FOR-US: slicer69 doas
CVE-2019-15899
RESERVED
CVE-2019-15898 (Nagios Log Server before 2.0.8 allows Reflected XSS via the
username o ...)
@@ -14947,7 +14947,7 @@ CVE-2019-13547
CVE-2019-13546
RESERVED
CVE-2019-13545 (In Horner Automation Cscape 9.90 and prior, improper
validation of dat ...)
- TODO: check
+ NOT-FOR-US: Horner Automation Cscape
CVE-2019-13544 (Delta Electronics TPEditor, Versions 1.94 and prior. Multiple
out-of-b ...)
NOT-FOR-US: Delta Electronics TPEditor
CVE-2019-13543
@@ -14955,7 +14955,7 @@ CVE-2019-13543
CVE-2019-13542 (3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server, all
version ...)
NOT-FOR-US: 3S-Smart
CVE-2019-13541 (In Horner Automation Cscape 9.90 and prior, an improper input
validati ...)
- TODO: check
+ NOT-FOR-US: Horner Automation Cscape
CVE-2019-13540 (Delta Electronics TPEditor, Versions 1.94 and prior. Multiple
stack-ba ...)
NOT-FOR-US: Delta Electronics TPEditor
CVE-2019-13539
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/cab61a94dc5e829dc3de1fe66e61d9bcb230d78d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/cab61a94dc5e829dc3de1fe66e61d9bcb230d78d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
