Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
16ef174f by Salvatore Bonaccorso at 2020-06-24T07:21:03+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15,13 +15,13 @@ CVE-2020-14995
CVE-2020-14994
RESERVED
CVE-2020-14993 (A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900,
and Vig ...)
- TODO: check
+ NOT-FOR-US: DrayTek devices
CVE-2020-14992
RESERVED
CVE-2020-14991
RESERVED
CVE-2020-14990 (IOBit Advanced SystemCare Free 13.5.0.263 allows local users
to gain p ...)
- TODO: check
+ NOT-FOR-US: IOBit Advanced SystemCare Free
CVE-2020-14989
RESERVED
CVE-2020-14988
@@ -45,21 +45,21 @@ CVE-2020-14980 (The Sophos Secure Email application through
3.9.4 for Android ha
CVE-2020-14979
RESERVED
CVE-2020-14978 (An issue was discovered in F-Secure SAFE 17.7 on macOS. Due to
incorre ...)
- TODO: check
+ NOT-FOR-US: F-Secure SAFE
CVE-2020-14977 (An issue was discovered in F-Secure SAFE 17.7 on macOS. The
XPC servic ...)
- TODO: check
+ NOT-FOR-US: F-Secure SAFE
CVE-2020-14976 (GNS3 ubridge through 0.9.18 on macOS, as used in GNS3 server
before 2. ...)
TODO: check
CVE-2020-14975 (The driver in IOBit Unlocker 1.1.2 allows a low-privileged
user to del ...)
- TODO: check
+ NOT-FOR-US: IOBit Unlocker
CVE-2020-14974 (The driver in IOBit Unlocker 1.1.2 allows a low-privileged
user to unl ...)
- TODO: check
+ NOT-FOR-US: IOBit Unlocker
CVE-2020-14973 (The loginForm within the general/login.php webpage in
webTareas 2.0p8 ...)
NOT-FOR-US: webTareas
CVE-2020-14972 (Multiple SQL injection vulnerabilities in Sourcecodester Pisay
Online ...)
NOT-FOR-US: Sourcecodester Pisay Online E-Learning System
CVE-2020-14971 (Pi-hole through 5.0 allows code injection in piholedhcp (the
Static DH ...)
- TODO: check
+ NOT-FOR-US: Pi-hole
CVE-2020-14970
RESERVED
CVE-2020-14969 (app/Model/Attribute.php in MISP 2.4.127 lacks an ACL lookup on
attribu ...)
@@ -71,7 +71,7 @@ CVE-2020-14967 (An issue was discovered in the jsrsasign
package before 8.0.18 f
CVE-2020-14966 (An issue was discovered in the jsrsasign package through
8.0.18 for No ...)
NOT-FOR-US: jsrsasign
CVE-2020-14965 (On TP-Link TL-WR740N v4 and TL-WR740ND v4 devices, an attacker
with ac ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2020-14964
RESERVED
CVE-2020-14963
@@ -107,13 +107,13 @@ CVE-2020-14948
CVE-2020-14947
RESERVED
CVE-2020-14946 (downloadFile.ashx in the Administrator section of the
Surveillance mod ...)
- TODO: check
+ NOT-FOR-US: Surveillance module in Global RADAR BSA Radar
CVE-2020-14945 (A privilege escalation vulnerability exists within Global
RADAR BSA Ra ...)
- TODO: check
+ NOT-FOR-US: Global RADAR BSA Radar
CVE-2020-14944 (Global RADAR BSA Radar 1.6.7234.24750 and earlier lacks valid
authoriz ...)
- TODO: check
+ NOT-FOR-US: Global RADAR BSA Radar
CVE-2020-14943 (The Firstname and Lastname parameters in Global RADAR BSA
Radar 1.6.72 ...)
- TODO: check
+ NOT-FOR-US: Global RADAR BSA Radar
CVE-2020-14942 (Tendenci 12.0.10 allows unrestricted deserialization in
apps\helpdesk\ ...)
NOT-FOR-US: Tendenci
CVE-2020-14941
@@ -27689,7 +27689,7 @@ CVE-2020-4190 (IBM Security Guardium 10.6, 11.0, and
11.1 contains hard-coded cr
CVE-2020-4189
RESERVED
CVE-2020-4188 (IBM Security Guardium 10.6 and 11.1 may use insufficiently
random numb ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2020-4187 (IBM Security Guardium 11.1 could disclose sensitive information
on the ...)
NOT-FOR-US: IBM
CVE-2020-4186
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16ef174fa09c791f690a2e3b700650aad8f8692a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16ef174fa09c791f690a2e3b700650aad8f8692a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
