Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2636a6c7 by Salvatore Bonaccorso at 2020-08-08T09:06:09+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2446,7 +2446,7 @@ CVE-2020-16170
CVE-2020-16169
RESERVED
CVE-2020-16168 (Temi firmware 20190419.165201 does not properly verify that
the source ...)
- TODO: check
+ NOT-FOR-US: Temi firmware
CVE-2020-16167
RESERVED
CVE-2020-16166 (The Linux kernel through 5.7.11 allows remote attackers to
make observ ...)
@@ -9472,7 +9472,7 @@ CVE-2020-13378
CVE-2020-13377
RESERVED
CVE-2020-13376 (SecurEnvoy SecurMail 9.3.503 allows attackers to upload
executable fil ...)
- TODO: check
+ NOT-FOR-US: SecurEnvoy SecurMail
CVE-2020-13375
RESERVED
CVE-2020-13374
@@ -24797,9 +24797,9 @@ CVE-2020-7825 (A vulnerability exists that could allow
the execution of operatin
CVE-2020-7824
RESERVED
CVE-2020-7823 (DaviewIndy has a Memory corruption vulnerability, triggered
when the u ...)
- TODO: check
+ NOT-FOR-US: DaviewIndy
CVE-2020-7822 (DaviewIndy has a Heap-based overflow vulnerability, triggered
when the ...)
- TODO: check
+ NOT-FOR-US: DaviewIndy
CVE-2020-7821 (Nexacro14/17 ExtCommonApiV13 Library under 2019.9.6 version
contain a ...)
NOT-FOR-US: Nexacro14/17 ExtCommonApiV13 Library
CVE-2020-7820 (Nexacro14/17 ExtCommonApiV13 Library under 2019.9.6 version
contain a ...)
@@ -24809,7 +24809,7 @@ CVE-2020-7819
CVE-2020-7818 (DaviewIndy 8.98.9 and earlier has a Heap-based overflow
vulnerability, ...)
NOT-FOR-US: Daview
CVE-2020-7817 (MyBrowserPlus downloads the files needed to run the program
through th ...)
- TODO: check
+ NOT-FOR-US: MyBrowserPlus
CVE-2020-7816 (A vulnerability in the JPEG image parsing module in DaView
Indy, DaVa+ ...)
NOT-FOR-US: DaView
CVE-2020-7815 (XPLATFORM v9.2.260 and eariler versions contain a vulnerability
that c ...)
@@ -24823,7 +24823,7 @@ CVE-2020-7812 (Ezhttptrans.ocx ActiveX Control in Kaoni
ezHTTPTrans 1.0.0.70 and
CVE-2020-7811
RESERVED
CVE-2020-7810 (hslogin2.dll ActiveX Control in Groupware contains a
vulnerability tha ...)
- TODO: check
+ NOT-FOR-US: hslogin2.dll ActiveX Control in Groupware
CVE-2020-7809 (ALSong 3.46 and earlier version contain a Document Object Model
(DOM) ...)
NOT-FOR-US: ALSong
CVE-2020-7808 (In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update
processin ...)
@@ -30140,9 +30140,9 @@ CVE-2020-5611 (Cross-site request forgery (CSRF)
vulnerability in Social Sharing
CVE-2020-5610 (Global TechStream (GTS) for TOYOTA dealers version 15.10.032
and earli ...)
NOT-FOR-US: Global TechStream (GTS) for TOYOTA dealers
CVE-2020-5609 (Directory traversal vulnerability in CAMS for HIS CENTUM CS
3000 (incl ...)
- TODO: check
+ NOT-FOR-US: Yokogawa CAMS
CVE-2020-5608 (CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000 Small)
R3.08.10 t ...)
- TODO: check
+ NOT-FOR-US: Yokogawa CAMS
CVE-2020-5607 (Open redirect vulnerability in SHIRASAGI v1.13.1 and earlier
allows re ...)
NOT-FOR-US: SHIRASAGI
CVE-2020-5606
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2636a6c703edf1a73b2636c5d5e9a1bf7b891ebd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2636a6c703edf1a73b2636c5d5e9a1bf7b891ebd
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
