Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 4686aa88 by Salvatore Bonaccorso at 2019-12-13T20:26:05Z Process more NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,5 +1,5 @@ CVE-2019-19793 (In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2 on Wind ...) - TODO: check + NOT-FOR-US: Cyxtera AppGate SDP Client CVE-2019-19792 RESERVED CVE-2019-19791 @@ -43,7 +43,7 @@ CVE-2019-19776 CVE-2019-19775 RESERVED CVE-2019-19774 (An issue was discovered in Zoho ManageEngine EventLog Analyzer 10.0 SP ...) - TODO: check + NOT-FOR-US: Zoho ManageEngine EventLog Analyzer CVE-2019-19773 RESERVED CVE-2019-19772 @@ -4181,7 +4181,7 @@ CVE-2019-19503 CVE-2019-19502 (pluginconfig.php in the Image Uploader and Browser plugin before 4.1.9 ...) NOT-FOR-US: ckeditor plugin CVE-2019-19501 (VeraCrypt 1.24 allows Local Privilege Escalation during execution of V ...) - TODO: check + NOT-FOR-US: VeraCrypt CVE-2019-19500 RESERVED CVE-2019-19499 @@ -4617,7 +4617,7 @@ CVE-2019-19399 CVE-2019-19398 RESERVED CVE-2019-19397 (There is a weak algorithm vulnerability in some Huawei products. The a ...) - TODO: check + NOT-FOR-US: Huawei CVE-2019-19396 (illumos, as used in OmniOS Community Edition before r151030y, allows a ...) NOT-FOR-US: illumos CVE-2019-19395 @@ -13686,7 +13686,7 @@ CVE-2019-17125 CVE-2019-17124 (Kramer VIAware 2.5.0719.1034 has Incorrect Access Control. ...) NOT-FOR-US: Kramer VIAware CVE-2019-17123 (The eGain Web Email API 11+ allows spoofed messages because the fromNa ...) - TODO: check + NOT-FOR-US: eGain Web Email API CVE-2019-17122 RESERVED CVE-2019-17121 (REDCap before 9.3.4 has XSS on the Customize & Manage Locking/E-si ...) @@ -26010,7 +26010,7 @@ CVE-2019-13349 (In Knowage through 6.1.1, an authenticated user that accesses th CVE-2019-13348 (In Knowage through 6.1.1, an authenticated user who accesses the datas ...) NOT-FOR-US: Knowage CVE-2019-13347 (An issue was discovered in the SAML Single Sign On (SSO) plugin for se ...) - TODO: check + NOT-FOR-US: SAML Single Sign On plugin for several Atlassian products CVE-2019-13346 (In MyT 1.5.1, the User[username] parameter has XSS. ...) NOT-FOR-US: MyT CVE-2019-13345 (The cachemgr.cgi web module of Squid through 4.7 has XSS via the user_ ...) @@ -48769,9 +48769,9 @@ CVE-2019-5293 (Some Huawei products have a memory leak vulnerability when handli CVE-2019-5292 (Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the versions bef ...) NOT-FOR-US: Huawei CVE-2019-5291 (Some Huawei products have an insufficient verification of data authent ...) - TODO: check + NOT-FOR-US: Huawei CVE-2019-5290 (Huawei S5700 and S6700 have a DoS security vulnerability. Attackers wi ...) - TODO: check + NOT-FOR-US: Huawei CVE-2019-5289 (Gauss100 OLTP database in ManageOne with versions of 6.5.0 have an out ...) NOT-FOR-US: Huawei CVE-2019-5288 (P30 smart phones with versions earlier than ELLE-AL00B 9.1.0.193(C00E1 ...) @@ -48849,9 +48849,9 @@ CVE-2019-5253 CVE-2019-5252 RESERVED CVE-2019-5251 (There is a path traversal vulnerability in several Huawei smartphones. ...) - TODO: check + NOT-FOR-US: Huawei CVE-2019-5250 (Mate 20 Pro smartphones with versions earlier than 9.1.0.135(C00E133R3 ...) - TODO: check + NOT-FOR-US: Mate 20 Pro smartphones CVE-2019-5249 RESERVED CVE-2019-5248 (CloudEngine 12800 has a DoS vulnerability. An attacker of a neighborin ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4686aa884f44153741ccecb740b47c500cef978d -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4686aa884f44153741ccecb740b47c500cef978d You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits