[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso Wed, 12 Feb 2020 12:22:12 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
e54361b7 by Salvatore Bonaccorso at 2020-02-12T21:21:15+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2020-8949 (Gocloud S2A_WL 4.2.7.16471, S2A 4.2.7.17278, S2A 4.3.0.15815, 
S2A 4.3. ...)
-       TODO: check
+       NOT-FOR-US: Gocloud devices
 CVE-2020-8948
        RESERVED
 CVE-2020-8947 (functions_netflow.php in Artica Pandora FMS 7.0 allows remote 
attacker ...)
-       TODO: check
+       NOT-FOR-US: Pandora FMS
 CVE-2020-8946 (Netis WF2471 v1.2.30142 devices allow an authenticated attacker 
to exe ...)
-       TODO: check
+       NOT-FOR-US: Netis devices
 CVE-2020-8945 (The proglottis Go wrapper before 0.1.1 for the GPGME library 
has a use ...)
        TODO: check
 CVE-2020-8944
@@ -109,15 +109,15 @@ CVE-2020-8896
 CVE-2020-8895
        RESERVED
 CVE-2020-8894 (An issue was discovered in MISP before 2.4.121. ACLs for 
discussion th ...)
-       TODO: check
+       NOT-FOR-US: MISP
 CVE-2020-8893 (An issue was discovered in MISP before 2.4.121. The Galaxy view 
contai ...)
-       TODO: check
+       NOT-FOR-US: MISP
 CVE-2020-8892 (An issue was discovered in MISP before 2.4.121. It did not 
consider th ...)
-       TODO: check
+       NOT-FOR-US: MISP
 CVE-2020-8891 (An issue was discovered in MISP before 2.4.121. It did not 
canonicaliz ...)
-       TODO: check
+       NOT-FOR-US: MISP
 CVE-2020-8890 (An issue was discovered in MISP before 2.4.121. It mishandled 
time ske ...)
-       TODO: check
+       NOT-FOR-US: MISP
 CVE-2020-8889
        RESERVED
 CVE-2020-8888
@@ -231,7 +231,7 @@ CVE-2020-8840 (FasterXML jackson-databind 2.0.0 through 
2.9.10.2 lacks certain x
        NOTE: Starting from 2.10 series mitigated as Safe Default Typing is 
enabled by
        NOTE: but still an issue when Default Typing is enabled.
 CVE-2020-8839 (Stored XSS was discovered on CHIYU BF-430 232/485 TCP/IP 
Converter dev ...)
-       TODO: check
+       NOT-FOR-US: CHIYU BF-430 232/485 TCP/IP Converter devices
 CVE-2015-9542
        RESERVED
 CVE-2020-8838
@@ -11336,11 +11336,11 @@ CVE-2019-20102
 CVE-2019-20101
        RESERVED
 CVE-2019-20100 (The Atlassian Application Links plugin is vulnerable to 
cross-site req ...)
-       TODO: check
+       NOT-FOR-US: Atlassian Application Links plugin
 CVE-2019-20099 (The VerifyPopServerConnection!add.jspa component in Atlassian 
Jira Ser ...)
-       TODO: check
+       NOT-FOR-US: Atlassian
 CVE-2019-20098 (The VerifySmtpServerConnection!add.jspa component in Atlassian 
Jira Se ...)
-       TODO: check
+       NOT-FOR-US: Atlassian
 CVE-2019-20097 (Bitbucket Server and Bitbucket Data Center versions starting 
from 1.0. ...)
        NOT-FOR-US: Bitbucket Server and Bitbucket Data Center
 CVE-2019-20096 (In the Linux kernel before 5.1, there is a memory leak in 
__feat_regis ...)
@@ -11870,11 +11870,11 @@ CVE-2020-3937 (SQL Injection in SysJust 
Syuan-Gu-Da-Shih, versions before 201912
 CVE-2020-3936
        RESERVED
 CVE-2020-3935 (Secom Co. Dr.ID, a Door Access Control and Personnel Attendance 
Manage ...)
-       TODO: check
+       NOT-FOR-US: Secom Co. Dr.ID
 CVE-2020-3934 (Secom Co. Dr.ID, a Door Access Control and Personnel Attendance 
Manage ...)
-       TODO: check
+       NOT-FOR-US: Secom Co. Dr.ID
 CVE-2020-3933 (Secom Co. Dr.ID, a Door Access Control and Personnel Attendance 
Manage ...)
-       TODO: check
+       NOT-FOR-US: Secom Co. Dr.ID
 CVE-2020-3932
        RESERVED
 CVE-2020-3931
@@ -21382,7 +21382,7 @@ CVE-2020-0794
 CVE-2020-0793
        RESERVED
 CVE-2020-0792 (An elevation of privilege vulnerability exists when the Windows 
Graphi ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0791
        RESERVED
 CVE-2020-0790
@@ -21432,7 +21432,7 @@ CVE-2020-0769
 CVE-2020-0768
        RESERVED
 CVE-2020-0767 (A remote code execution vulnerability exists in the way that 
the Chakr ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0766
        RESERVED
 CVE-2020-0765
@@ -21448,67 +21448,67 @@ CVE-2020-0761
 CVE-2020-0760
        RESERVED
 CVE-2020-0759 (A remote code execution vulnerability exists in Microsoft Excel 
softwa ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0758
        RESERVED
 CVE-2020-0757 (An elevation of privilege vulnerability exists when Windows 
improperly ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0756 (An information disclosure vulnerability exists in the 
Cryptography Nex ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0755 (An information disclosure vulnerability exists in the 
Cryptography Nex ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0754 (An elevation of privilege vulnerability exists in Windows Error 
Report ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0753 (An elevation of privilege vulnerability exists in Windows Error 
Report ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0752 (An elevation of privilege vulnerability exists in the way that 
the Win ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0751 (A denial of service vulnerability exists when Microsoft Hyper-V 
on a h ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0750 (An elevation of privilege vulnerability exists in the way that 
the Con ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0749 (An elevation of privilege vulnerability exists in the way that 
the Con ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0748 (An information disclosure vulnerability exists in the 
Cryptography Nex ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0747 (An elevation of privilege vulnerability exists when the Windows 
Data S ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0746 (An information disclosure vulnerability exists in the way that 
Microso ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0745 (An elevation of privilege vulnerability exists when the Windows 
Graphi ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0744 (An information disclosure vulnerability exists in the way that 
the Win ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0743 (An elevation of privilege vulnerability exists in the way that 
the Con ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0742 (An elevation of privilege vulnerability exists in the way that 
the Con ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0741 (An elevation of privilege vulnerability exists in the way that 
the Con ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0740 (An elevation of privilege vulnerability exists in the way that 
the Con ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0739 (An elevation of privilege vulnerability exists in the way that 
the dss ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0738 (A memory corruption vulnerability exists when Windows Media 
Foundation ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0737 (An elevation of privilege vulnerability exists in the way that 
the tap ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0736 (An information disclosure vulnerability exists when the Windows 
kernel ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0735 (An elevation of privilege vulnerability exists in the way that 
the Win ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0734 (A remote code execution vulnerability exists in the Windows 
Remote Des ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0733 (An elevation of privilege vulnerability exists when the Windows 
Malici ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0732 (An elevation of privilege vulnerability exists when DirectX 
improperly ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0731 (An elevation of privilege vulnerability exists in Windows when 
the Win ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0730 (An elevation of privilege vulnerability exists when the Windows 
User P ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0729 (A remote code execution vulnerability exists in Microsoft 
Windows that ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2020-0728 (An information vulnerability exists when Windows Modules 
Installer Ser ...)
        TODO: check
 CVE-2020-0727 (An elevation of privilege vulnerability exists when the 
Connected User ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/e54361b765e630e6a03c7029d7784bc4b40ff672

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/e54361b765e630e6a03c7029d7784bc4b40ff672
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process more NFUs

Reply via email to