Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4686aa88 by Salvatore Bonaccorso at 2019-12-13T20:26:05Z
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2019-19793 (In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2
on Wind ...)
- TODO: check
+ NOT-FOR-US: Cyxtera AppGate SDP Client
CVE-2019-19792
RESERVED
CVE-2019-19791
@@ -43,7 +43,7 @@ CVE-2019-19776
CVE-2019-19775
RESERVED
CVE-2019-19774 (An issue was discovered in Zoho ManageEngine EventLog Analyzer
10.0 SP ...)
- TODO: check
+ NOT-FOR-US: Zoho ManageEngine EventLog Analyzer
CVE-2019-19773
RESERVED
CVE-2019-19772
@@ -4181,7 +4181,7 @@ CVE-2019-19503
CVE-2019-19502 (pluginconfig.php in the Image Uploader and Browser plugin
before 4.1.9 ...)
NOT-FOR-US: ckeditor plugin
CVE-2019-19501 (VeraCrypt 1.24 allows Local Privilege Escalation during
execution of V ...)
- TODO: check
+ NOT-FOR-US: VeraCrypt
CVE-2019-19500
RESERVED
CVE-2019-19499
@@ -4617,7 +4617,7 @@ CVE-2019-19399
CVE-2019-19398
RESERVED
CVE-2019-19397 (There is a weak algorithm vulnerability in some Huawei
products. The a ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2019-19396 (illumos, as used in OmniOS Community Edition before r151030y,
allows a ...)
NOT-FOR-US: illumos
CVE-2019-19395
@@ -13686,7 +13686,7 @@ CVE-2019-17125
CVE-2019-17124 (Kramer VIAware 2.5.0719.1034 has Incorrect Access Control. ...)
NOT-FOR-US: Kramer VIAware
CVE-2019-17123 (The eGain Web Email API 11+ allows spoofed messages because
the fromNa ...)
- TODO: check
+ NOT-FOR-US: eGain Web Email API
CVE-2019-17122
RESERVED
CVE-2019-17121 (REDCap before 9.3.4 has XSS on the Customize & Manage
Locking/E-si ...)
@@ -26010,7 +26010,7 @@ CVE-2019-13349 (In Knowage through 6.1.1, an
authenticated user that accesses th
CVE-2019-13348 (In Knowage through 6.1.1, an authenticated user who accesses
the datas ...)
NOT-FOR-US: Knowage
CVE-2019-13347 (An issue was discovered in the SAML Single Sign On (SSO)
plugin for se ...)
- TODO: check
+ NOT-FOR-US: SAML Single Sign On plugin for several Atlassian products
CVE-2019-13346 (In MyT 1.5.1, the User[username] parameter has XSS. ...)
NOT-FOR-US: MyT
CVE-2019-13345 (The cachemgr.cgi web module of Squid through 4.7 has XSS via
the user_ ...)
@@ -48769,9 +48769,9 @@ CVE-2019-5293 (Some Huawei products have a memory leak
vulnerability when handli
CVE-2019-5292 (Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the
versions bef ...)
NOT-FOR-US: Huawei
CVE-2019-5291 (Some Huawei products have an insufficient verification of data
authent ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2019-5290 (Huawei S5700 and S6700 have a DoS security vulnerability.
Attackers wi ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2019-5289 (Gauss100 OLTP database in ManageOne with versions of 6.5.0 have
an out ...)
NOT-FOR-US: Huawei
CVE-2019-5288 (P30 smart phones with versions earlier than ELLE-AL00B
9.1.0.193(C00E1 ...)
@@ -48849,9 +48849,9 @@ CVE-2019-5253
CVE-2019-5252
RESERVED
CVE-2019-5251 (There is a path traversal vulnerability in several Huawei
smartphones. ...)
- TODO: check
+ NOT-FOR-US: Huawei
CVE-2019-5250 (Mate 20 Pro smartphones with versions earlier than
9.1.0.135(C00E133R3 ...)
- TODO: check
+ NOT-FOR-US: Mate 20 Pro smartphones
CVE-2019-5249
RESERVED
CVE-2019-5248 (CloudEngine 12800 has a DoS vulnerability. An attacker of a
neighborin ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4686aa884f44153741ccecb740b47c500cef978d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4686aa884f44153741ccecb740b47c500cef978d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
