[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso Wed, 11 Mar 2020 01:20:10 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
be81d1f6 by Salvatore Bonaccorso at 2020-03-11T09:19:03+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2020-10385 (A stored cross-site scripting (XSS) vulnerability exists in 
the WPForm ...)
-       TODO: check
+       NOT-FOR-US: WPForms Contact Form plugin for WordPress
 CVE-2020-10384
        RESERVED
 CVE-2020-10383
@@ -9456,35 +9456,35 @@ CVE-2020-6212
 CVE-2020-6211
        RESERVED
 CVE-2020-6210 (SAP Fiori Launchpad, versions- 753, 754, does not sufficiently 
encode  ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6209 (SAP Disclosure Management, version 10.1, does not perform 
necessary au ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6208 (SAP Business Objects Business Intelligence Platform (Crystal 
Reports), ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6207 (SAP Solution Manager (User Experience Monitoring), version- 
7.2, due t ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6206 (SAP Cloud Platform Integration for Data Services, version 1.0, 
allows  ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6205 (SAP NetWeaver AS ABAP Business Server Pages (Smart Forms), 
SAP_BASIS v ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6204 (The selection query in SAP Treasury and Risk Management 
(Transaction M ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6203 (SAP NetWeaver UDDI Server (Services Registry), versions- 7.10, 
7.11, 7 ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6202 (SAP NetWeaver Application Server Java (User Management Engine), 
versio ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6201 (The SAP Commerce (Testweb Extension), versions- 6.6, 6.7, 1808, 
1811,  ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6200 (The SAP Commerce (SmartEdit Extension), versions- 6.6, 6.7, 
1808, 1811 ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6199 (The view FIMENAV_COMPCERT in SAP ERP (MENA Certificate 
Management), EA ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6198 (SAP Solution Manager (Diagnostics Agent), version 720, allows 
unencryp ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6197 (SAP Enable Now, before version 1908, does not invalidate 
session token ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6196 (SAP BusinessObjects Mobile (MobileBIService), version 4.2, 
allows an a ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6195
        RESERVED
 CVE-2020-6194
@@ -9520,7 +9520,7 @@ CVE-2020-6180
 CVE-2020-6179
        RESERVED
 CVE-2020-6178 (SAP Enable Now, before version 1911, sends the Session ID 
cookie value ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2020-6177 (SAP Mobile Platform, version 3.0, does not sufficiently 
validate an XM ...)
        NOT-FOR-US: SAP
 CVE-2019-20367 (nlist.c in libbsd before 0.10.0 has an out-of-bounds read 
during a com ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be81d1f6bdd64b33c5598d1ca51ffe5c6976452c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be81d1f6bdd64b33c5598d1ca51ffe5c6976452c
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to