[Git][security-tracker-team/security-tracker][master] Process some NFUs

Tue, 26 Nov 2019 12:27:44 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
8fdeae9f by Salvatore Bonaccorso at 2019-11-26T20:26:28Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2019-19308
 CVE-2019-19307 (An integer overflow in parse_mqtt in mongoose.c in Cesanta 
Mongoose 6. ...)
        TODO: check
 CVE-2019-19306 (The Zoho CRM Lead Magnet plugin 1.6.9.1 for WordPress allows 
XSS via m ...)
-       TODO: check
+       NOT-FOR-US: Zoho CRM Lead Magnet plugin for WordPress
 CVE-2019-19305
        RESERVED
 CVE-2019-19304
@@ -71,11 +71,11 @@ CVE-2019-19274 (typed_ast 1.3.0 and 1.3.1 has a 
handle_keywordonly_args out-of-b
 CVE-2019-19273
        RESERVED
 CVE-2015-9539 (The Fast Secure Contact Form plugin before 4.0.38 for WordPress 
allows ...)
-       TODO: check
+       NOT-FOR-US: Fast Secure Contact Form plugin for WordPress
 CVE-2015-9538 (The NextGEN Gallery plugin before 2.1.15 for WordPress allows 
../ Dire ...)
-       TODO: check
+       NOT-FOR-US: NextGEN Gallery plugin for WordPress
 CVE-2015-9537 (The NextGEN Gallery plugin before 2.1.10 for WordPress has 
multiple XS ...)
-       TODO: check
+       NOT-FOR-US: NextGEN Gallery plugin for WordPress
 CVE-2019-19272 (An issue was discovered in tls_verify_crl in ProFTPD before 
1.3.6. Dir ...)
        - proftpd-dfsg 1.3.6-1
        [stretch] - proftpd-dfsg <no-dsa> (Minor issue)
@@ -3851,7 +3851,7 @@ CVE-2019-18582
 CVE-2019-18581
        RESERVED
 CVE-2019-18580 (Dell EMC Storage Monitoring and Reporting version 4.3.1 
contains a Jav ...)
-       TODO: check
+       NOT-FOR-US: EMC
 CVE-2019-18579
        RESERVED
 CVE-2019-18578
@@ -45294,7 +45294,7 @@ CVE-2019-4389
 CVE-2019-4388
        RESERVED
 CVE-2019-4387 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 
6.0.2.0 i ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2019-4386 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 11.1 ...)
        NOT-FOR-US: IBM
 CVE-2019-4385 (IBM Spectrum Protect Plus 10.1.2 may display the vSnap CIFS 
password i ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8fdeae9f52c182090e9f48cc43fe7958218ed52c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8fdeae9f52c182090e9f48cc43fe7958218ed52c
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to