Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4305cdf7 by Salvatore Bonaccorso at 2020-03-31T10:56:07+02:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -57499,11 +57499,11 @@ CVE-2019-9511 (Some HTTP/2 implementations are
vulnerable to window size manipul
CVE-2019-9510 (A vulnerability in Microsoft Windows 10 1803 and Windows Server
2019 a ...)
NOT-FOR-US: Microsoft
CVE-2019-9509 (The web interface of the Vertiv Avocent UMG-4000 version
4.2.1.19 is v ...)
- TODO: check
+ NOT-FOR-US: Vertiv Avocent UMG-4000
CVE-2019-9508 (The web interface of the Vertiv Avocent UMG-4000 version
4.2.1.19 is v ...)
- TODO: check
+ NOT-FOR-US: Vertiv Avocent UMG-4000
CVE-2019-9507 (The web interface of the Vertiv Avocent UMG-4000 version
4.2.1.19 is v ...)
- TODO: check
+ NOT-FOR-US: Vertiv Avocent UMG-4000
CVE-2019-9506 (The Bluetooth BR/EDR specification up to and including version
5.1 per ...)
{DLA-1930-1 DLA-1919-1}
- linux 5.2.6-1
@@ -62345,7 +62345,7 @@ CVE-2019-7632 (LifeSize Team, Room, Passport, and
Networker 220 devices allow Au
CVE-2019-7631
RESERVED
CVE-2019-7630 (An issue was discovered in gdrv.sys in Gigabyte APP Center
before 19.0 ...)
- TODO: check
+ NOT-FOR-US: Gigabyte APP Center
CVE-2019-7629 (Stack-based buffer overflow in the strip_vt102_codes function
in TinTi ...)
- tintin++ 2.01.5-2 (low; bug #924348)
[stretch] - tintin++ <no-dsa> (Minor issue)
@@ -62429,7 +62429,7 @@ CVE-2019-7591
CVE-2019-7590 (ExacqVision Server’s services 'exacqVisionServer',
'dvrdhcpserve ...)
NOT-FOR-US: ExacqVision
CVE-2019-7589 (A vulnerability with the SmartService API Service option exists
whereb ...)
- TODO: check
+ NOT-FOR-US: SmartService API Service
CVE-2019-7588 (A vulnerability in the exacqVision Enterprise System Manager
(ESM) v5. ...)
NOT-FOR-US: exacqVision Enterprise System Manager
CVE-2019-7587 (Bo-blog Wind through 1.6.0-r allows SQL Injection via the
admin.php/co ...)
@@ -63485,9 +63485,9 @@ CVE-2019-7247
CVE-2019-7246
RESERVED
CVE-2019-7245 (An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z
before 2.23. ...)
- TODO: check
+ NOT-FOR-US: TechPowerUp GPU-Z
CVE-2019-7244 (An issue was discovered in kerneld.sys in AIDA64 before 5.99.
The vuln ...)
- TODO: check
+ NOT-FOR-US: AIDA64
CVE-2019-7243
RESERVED
CVE-2019-7242
@@ -63495,7 +63495,7 @@ CVE-2019-7242
CVE-2019-7241
RESERVED
CVE-2019-7240 (An issue was discovered in WinRing0x64.sys in Moo0 System
Monitor 1.83 ...)
- TODO: check
+ NOT-FOR-US: Moo0 System Monitor
CVE-2019-7239
RESERVED
CVE-2019-7238 (Sonatype Nexus Repository Manager before 3.15.0 has Incorrect
Access C ...)
@@ -64763,7 +64763,7 @@ CVE-2019-6698 (Use of Hard-coded Credentials
vulnerability in FortiRecorder all
CVE-2019-6697
RESERVED
CVE-2019-6696 (An improper input validation vulnerability in FortiOS 6.2.1,
6.2.0, 6. ...)
- TODO: check
+ NOT-FOR-US: Fortiguard
CVE-2019-6695 (Lack of root file system integrity checking in Fortinet
FortiManager V ...)
NOT-FOR-US: Fortinet
CVE-2019-6694
@@ -65042,11 +65042,11 @@ CVE-2019-6562 (In Philips Tasy EMR, Tasy EMR Versions
3.02.1744 and prior, the s
CVE-2019-6561 (Cross-site request forgery has been identified in Moxa IKS and
EDS, wh ...)
NOT-FOR-US: Moxa
CVE-2019-6560 (In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions
3.7 and ...)
- TODO: check
+ NOT-FOR-US: Auto-Maskin RP210E
CVE-2019-6559 (Moxa IKS and EDS allow remote authenticated users to cause a
denial of ...)
NOT-FOR-US: Moxa
CVE-2019-6558 (In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions
3.7 and ...)
- TODO: check
+ NOT-FOR-US: Auto-Maskin RP210E
CVE-2019-6557 (Several buffer overflow vulnerabilities have been identified in
Moxa I ...)
NOT-FOR-US: Moxa
CVE-2019-6556 (When processing project files, the application (Omron
CX-Programmer v9 ...)
@@ -67812,7 +67812,7 @@ CVE-2019-5544 (OpenSLP as used in ESXi and the Horizon
DaaS appliances has a hea
- openslp-dfsg <removed>
NOTE: https://www.openwall.com/lists/oss-security/2019/12/06/1
CVE-2019-5543 (For VMware Horizon Client for Windows (5.x and prior before
5.3.0), VM ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2019-5542 (VMware Workstation (15.x before 15.5.1) and Fusion (11.x before
11.5.1 ...)
NOT-FOR-US: VMware
CVE-2019-5541 (VMware Workstation (15.x before 15.5.1) and Fusion (11.x before
11.5.1 ...)
@@ -71140,7 +71140,7 @@ CVE-2019-4003
CVE-2019-4002
RESERVED
CVE-2019-4001 (Improper input validation in Druva inSync Client 6.5.0 allows a
local, ...)
- TODO: check
+ NOT-FOR-US: Druva inSync Client
CVE-2019-4000 (Improper neutralization of directives in dynamically evaluated
code in ...)
NOT-FOR-US: Druva inSync Mac OS Client
CVE-2019-3999 (Improper neutralization of special elements used in an OS
command in D ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4305cdf75d635ed30db46c1bbf23b34cbe898000
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4305cdf75d635ed30db46c1bbf23b34cbe898000
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
