Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5e7fcd39 by Salvatore Bonaccorso at 2020-01-07T09:42:56+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -219,7 +219,7 @@ CVE-2020-5848
CVE-2020-5847
RESERVED
CVE-2020-5846 (An insecure file upload and code execution issue was discovered
in Ahs ...)
- TODO: check
+ NOT-FOR-US: Ahsay Cloud Backup Suite
CVE-2020-5845
RESERVED
CVE-2020-5844
@@ -891,7 +891,7 @@ CVE-2020-5514 (Gila CMS 1.11.8 allows Unrestricted Upload
of a File with a Dange
CVE-2020-5513 (Gila CMS 1.11.8 allows /cm/delete?t=../ Directory Traversal.
...)
NOT-FOR-US: Gila CMS
CVE-2020-5512 (Gila CMS 1.11.8 allows /admin/media?path=../ Path Traversal.
...)
- TODO: check
+ NOT-FOR-US: Gila CMS
CVE-2020-5511
RESERVED
CVE-2020-5510
@@ -917,7 +917,7 @@ CVE-2019-20350
CVE-2019-20349
RESERVED
CVE-2019-20348 (OKER G232V1 v1.03.02.20161129 devices provide a root terminal
on a UAR ...)
- TODO: check
+ NOT-FOR-US: OKER G232V1 devices
CVE-2019-20347
RESERVED
CVE-2019-20346
@@ -9942,7 +9942,7 @@ CVE-2019-19587 (In WSO2 Enterprise Integrator 6.5.0,
reflected XSS occurs when u
CVE-2019-19586
RESERVED
CVE-2019-19585 (An issue was discovered in rConfig 3.9.3. The install script
updates t ...)
- TODO: check
+ NOT-FOR-US: rConfig
CVE-2019-19584
RESERVED
CVE-2019-19583 (An issue was discovered in Xen through 4.12.x allowing x86
HVM/PVH gue ...)
@@ -10322,7 +10322,7 @@ CVE-2019-19511
CVE-2019-19510
RESERVED
CVE-2019-19509 (An issue was discovered in rConfig 3.9.3. A remote
authenticated user ...)
- TODO: check
+ NOT-FOR-US: rConfig
CVE-2019-19508
RESERVED
CVE-2019-19507 (In jpv (aka Json Pattern Validator) before 2.1.1,
compareCommon() can ...)
@@ -21037,9 +21037,9 @@ CVE-2019-16719 (WTCMS 1.0 allows
index.php?g=admin&m=index&a=index CSRF
CVE-2019-16718 (In radare2 before 3.9.0, a command injection vulnerability
exists in b ...)
- radare2 <not-affected> (Incomplete fixes for CVE-2019-14745 not
applied)
CVE-2019-16717 (OX App Suite through 7.10.2 has XSS. ...)
- TODO: check
+ NOT-FOR-US: Open-Xchange App Suite
CVE-2019-16716 (OX App Suite through 7.10.2 has Incorrect Access Control. ...)
- TODO: check
+ NOT-FOR-US: Open-Xchange App Suite
CVE-2019-16715
RESERVED
CVE-2019-16713 (ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as
demonstrate ...)
@@ -22215,13 +22215,13 @@ CVE-2019-16276 (Go before 1.12.10 and 1.13.x before
1.13.1 allow HTTP Request Sm
NOTE:
https://github.com/golang/go/commit/5a6ab1ec3e678640befebeb3318b746a64ad986c
(golang-1.13)
NOTE:
https://github.com/golang/go/commit/6e6f4aaf70c8b1cc81e65a26332aa9409de03ad8
(golang-1.12)
CVE-2019-16274 (DTEN D5 before 1.3 and D7 before 1.3 devices transfer customer
data fi ...)
- TODO: check
+ NOT-FOR-US: DTEN D5 devices
CVE-2019-16273 (DTEN D5 and D7 before 1.3.4 devices allow unauthenticated root
shell a ...)
- TODO: check
+ NOT-FOR-US: DTEN D5 devices
CVE-2019-16272 (On DTEN D5 and D7 before 1.3.4 devices, factory settings
allows for fi ...)
- TODO: check
+ NOT-FOR-US: DTEN D5 devices
CVE-2019-16271 (DTEN D5 and D7 before 1.3.2 devices allows remote attackers to
read sa ...)
- TODO: check
+ NOT-FOR-US: DTEN D5 devices
CVE-2019-16270
RESERVED
CVE-2019-16269
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/5e7fcd39cc0778d3b542656e62685f4eb6a6e6fa
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/5e7fcd39cc0778d3b542656e62685f4eb6a6e6fa
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
