Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
aef8393a by Salvatore Bonaccorso at 2020-06-03T22:20:58+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,17 +5,17 @@ CVE-2020-13789
CVE-2020-13788
RESERVED
CVE-2020-13787 (D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext
Transmission of ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2020-13786 (D-Link DIR-865L Ax 1.20B01 Beta devices allow CSRF. ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2020-13785 (D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate
Encryption Str ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2020-13784 (D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable
seed in a P ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2020-13783 (D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage
of Sens ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2020-13782 (D-Link DIR-865L Ax 1.20B01 Beta devices allow Command
Injection. ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2020-13781
RESERVED
CVE-2020-13780
@@ -198,7 +198,7 @@ CVE-2020-13704
CVE-2020-13703
RESERVED
CVE-2019-20809 (The price oracle in PriceOracle.sol in Compound Finance
Compound Price ...)
- TODO: check
+ NOT-FOR-US: Compound Finance Compound Price Oracle
CVE-2020-13754 (hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger
an out-of ...)
- qemu <unfixed>
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2020-06/msg00004.html
@@ -2105,7 +2105,7 @@ CVE-2020-12848
CVE-2020-12847
RESERVED
CVE-2020-12846 (Zimbra before 8.8.15 Patch 10 and 9.x before 9.0.0 Patch 3
allows remo ...)
- TODO: check
+ NOT-FOR-US: Zimbra
CVE-2020-12845
RESERVED
CVE-2020-12844
@@ -24152,7 +24152,7 @@ CVE-2020-4309 (IBM Content Navigator 3.0CD could
disclose sensitive information
CVE-2020-4308
RESERVED
CVE-2020-4307 (IBM Security Guardium 11.1 could allow an attacker on the same
network ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2020-4306 (IBM Planning Analytics Local 2.0.0 through 2.0.9 is vulnerable
to cros ...)
NOT-FOR-US: IBM
CVE-2020-4305
@@ -24386,13 +24386,13 @@ CVE-2020-4192
CVE-2020-4191
RESERVED
CVE-2020-4190 (IBM Security Guardium 10.6, 11.0, and 11.1 contains hard-coded
credent ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2020-4189
RESERVED
CVE-2020-4188
RESERVED
CVE-2020-4187 (IBM Security Guardium 11.1 could disclose sensitive information
on the ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2020-4186
RESERVED
CVE-2020-4185
@@ -24402,17 +24402,17 @@ CVE-2020-4184
CVE-2020-4183
RESERVED
CVE-2020-4182 (IBM Security Guardium 11.1 is vulnerable to cross-site
scripting. This ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2020-4181
RESERVED
CVE-2020-4180 (IBM Security Guardium 11.1 could allow a remote authenticated
attacker ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2020-4179
RESERVED
CVE-2020-4178
RESERVED
CVE-2020-4177 (IBM Security Guardium 11.1 contains hard-coded credentials,
such as a ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2020-4176
RESERVED
CVE-2020-4175
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aef8393a9f0c7975d53d6132bebdcf8b112c6f58
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aef8393a9f0c7975d53d6132bebdcf8b112c6f58
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
