[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso Thu, 07 May 2020 13:39:08 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
73c5a2ad by Salvatore Bonaccorso at 2020-05-07T22:37:33+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2020-12710
 CVE-2020-12709
        RESERVED
 CVE-2020-12708 (Multiple cross-site scripting vulnerabilities in PHP-Fusion 
9.03.50 al ...)
-       TODO: check
+       NOT-FOR-US: PHP-Fusion
 CVE-2020-12707
        RESERVED
 CVE-2020-12706
@@ -39,7 +39,7 @@ CVE-2020-12693
 CVE-2020-12688
        RESERVED
 CVE-2020-12687 (An issue was discovered in Serpico before 1.3.3. The 
/admin/attacments ...)
-       TODO: check
+       NOT-FOR-US: Serpico
 CVE-2020-12686
        RESERVED
 CVE-2020-12685
@@ -47,7 +47,7 @@ CVE-2020-12685
 CVE-2020-12684
        RESERVED
 CVE-2020-12683 (Katyshop2 before 2.12 has multiple stored XSS issues. ...)
-       TODO: check
+       NOT-FOR-US: Katyshop2
 CVE-2020-12682
        RESERVED
 CVE-2020-12681
@@ -55,7 +55,7 @@ CVE-2020-12681
 CVE-2020-12680
        RESERVED
 CVE-2020-12679 (A reflected cross-site scripting (XSS) vulnerability in the 
Mitel Shor ...)
-       TODO: check
+       NOT-FOR-US: Mitel
 CVE-2020-12678
        REJECTED
 CVE-2020-12677
@@ -239,7 +239,7 @@ CVE-2020-12610
 CVE-2020-12609
        RESERVED
 CVE-2020-12608 (An issue was discovered in SolarWinds MSP PME (Patch 
Management Engine ...)
-       TODO: check
+       NOT-FOR-US: SolarWinds
 CVE-2020-12607
        RESERVED
 CVE-2020-12606
@@ -5210,13 +5210,13 @@ CVE-2020-10975 (GitLab EE/CE 10.8 to 12.9 is leaking 
metadata and comments on vu
        - gitlab <unfixed>
        NOTE: 
https://about.gitlab.com/releases/2020/03/26/security-release-12-dot-9-dot-1-released/
 CVE-2020-10974 (An issue was discovered on Wavlink WL-WN579G3 - 
M79X3.V5030.180719 and ...)
-       TODO: check
+       NOT-FOR-US: Wavlink
 CVE-2020-10973 (An issue was discovered on Wavlink WL-WN530HG4 
M30HG4.V5030.191116 dev ...)
-       TODO: check
+       NOT-FOR-US: Wavlink
 CVE-2020-10972 (An issue was discovered on Wavlink WL-WN530HG4 
M30HG4.V5030.191116 dev ...)
-       TODO: check
+       NOT-FOR-US: Wavlink
 CVE-2020-10971 (An issue was discovered on Wavlink WL-WN579G3 
M79X3.V5030.180719, WL-W ...)
-       TODO: check
+       NOT-FOR-US: Wavlink
 CVE-2020-10970
        RESERVED
 CVE-2020-10969 (FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the 
interact ...)
@@ -10124,9 +10124,9 @@ CVE-2020-8985 (ZendTo prior to 5.22-2 Beta allowed 
reflected XSS and CSRF via th
 CVE-2020-8984 (lib/NSSDropbox.php in ZendTo prior to 5.22-2 Beta allowed IP 
address s ...)
        NOT-FOR-US: ZendTo
 CVE-2020-8983 (In certain situations, all versions of Citrix ShareFile 
StorageZones ( ...)
-       TODO: check
+       NOT-FOR-US: Citrix
 CVE-2020-8982 (In certain situations, all versions of Citrix ShareFile 
StorageZones ( ...)
-       TODO: check
+       NOT-FOR-US: Citrix
 CVE-2020-8981 (A cross-site scripting (XSS) vulnerability was discovered in 
the Sourc ...)
        NOT-FOR-US: Source Integration plugin for MantisBT
 CVE-2020-8980
@@ -12911,7 +12911,7 @@ CVE-2020-7807
 CVE-2020-7806 (Tobesoft Xplatform 9.2.2.250 and earlier version have an 
arbitrary cod ...)
        NOT-FOR-US: Tobesoft Xplatform
 CVE-2020-7805 (An issue was discovered on KT Slim egg IML500 (R7283, R8112, 
R8424) an ...)
-       TODO: check
+       NOT-FOR-US: KT Slim egg IML500 wifi devices
 CVE-2020-7804 (ActiveX Control(HShell.dll) in Handy Groupware 1.7.3.1 for 
Windows 7,  ...)
        NOT-FOR-US: Handy Groupware
 CVE-2020-7803 (IMGTech Co,Ltd ZInsX.ocx ActiveX Control in Zoneplayer 2.0.1.3, 
versio ...)
@@ -13594,7 +13594,7 @@ CVE-2020-7475 (A CWE-74: Improper Neutralization of 
Special Elements in Output U
 CVE-2020-7474 (A CWE-427: Uncontrolled Search Path Element vulnerability 
exists in Pr ...)
        NOT-FOR-US: ProSoft Configurator
 CVE-2020-7473 (In certain situations, all versions of Citrix ShareFile 
StorageZones ( ...)
-       TODO: check
+       NOT-FOR-US: Citrix
 CVE-2020-7472
        RESERVED
 CVE-2019-20390



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/73c5a2ad650ef2f4852fe0cd5312e741103b47ed

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/73c5a2ad650ef2f4852fe0cd5312e741103b47ed
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to