Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d6bf419d by Salvatore Bonaccorso at 2020-03-23T09:13:20+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -67,13 +67,13 @@ CVE-2020-10823
CVE-2020-10822
RESERVED
CVE-2020-10821 (Nagios XI 5.6.11 allows XSS via the account/main.php theme
parameter. ...)
- TODO: check
+ NOT-FOR-US: Nagios XI
CVE-2020-10820 (Nagios XI 5.6.11 allows XSS via the
includes/components/ldap_ad_integr ...)
- TODO: check
+ NOT-FOR-US: Nagios XI
CVE-2020-10819 (Nagios XI 5.6.11 allows XSS via the
includes/components/ldap_ad_integr ...)
- TODO: check
+ NOT-FOR-US: Nagios XI
CVE-2020-10818 (Artica Proxy 4.26 allows remote command execution for an
authenticated ...)
- TODO: check
+ NOT-FOR-US: Artica Proxy
CVE-2020-10817
RESERVED
CVE-2019-20625
@@ -297,7 +297,7 @@ CVE-2020-10809 (An issue was discovered in HDF5 through
1.12.0. A heap-based buf
NOTE:
https://research.loginsoft.com/bugs/heap-overflow-in-decompress-c-hdf5-1-13-0/
TODO: check details
CVE-2020-10808 (Vesta Control Panel (VestaCP) through 0.9.8-26 allows Command
Injectio ...)
- TODO: check
+ NOT-FOR-US: Vesta Control Panel
CVE-2020-10807 (auth_svc in Caldera before 2.6.5 allows authentication bypass
(for RES ...)
TODO: check
CVE-2020-10806 (eZ Publish Kernel before 5.4.14.1, 6.x before 6.13.6.2, and
7.x before ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6bf419d6dddc35103ae55d02e1bc1d09aa18c6c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6bf419d6dddc35103ae55d02e1bc1d09aa18c6c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
