[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso Thu, 08 Oct 2020 13:04:56 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
311f4521 by Salvatore Bonaccorso at 2020-10-08T22:03:24+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45899,9 +45899,9 @@ CVE-2020-7468
 CVE-2020-7467
        RESERVED
 CVE-2020-7466 (The PPP implementation of MPD before 5.9 allows a remote 
attacker who  ...)
-       TODO: check
+       NOT-FOR-US: MPD (FreeBSD PPP daemon)
 CVE-2020-7465 (The L2TP implementation of MPD before 5.9 allows a remote 
attacker who ...)
-       TODO: check
+       NOT-FOR-US: MPD (FreeBSD PPP daemon)
 CVE-2020-7464
        RESERVED
 CVE-2020-7463
@@ -46203,7 +46203,7 @@ CVE-2020-7318
 CVE-2020-7317
        RESERVED
 CVE-2020-7316 (Unquoted service path vulnerability in McAfee File and 
Removable Media ...)
-       TODO: check
+       NOT-FOR-US: McAfee
 CVE-2020-7315 (DLL Injection Vulnerability in McAfee Agent (MA) for Windows 
prior to  ...)
        NOT-FOR-US: McAfee
 CVE-2020-7314 (Privilege Escalation Vulnerability in the installer in McAfee 
Data Exc ...)
@@ -47283,7 +47283,7 @@ CVE-2020-6877
 CVE-2020-6876
        RESERVED
 CVE-2020-6875 (A ZTE product is impacted by the improper access control 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: ZTE
 CVE-2020-6874 (A ZTE product is impacted by the cryptographic issues 
vulnerability. T ...)
        NOT-FOR-US: ZTE
 CVE-2020-6873 (A ZTE product has a DoS vulnerability. Because the equipment 
couldn&#8 ...)
@@ -56444,19 +56444,19 @@ CVE-2020-3604
 CVE-2020-3603
        RESERVED
 CVE-2020-3602 (A vulnerability in the CLI of Cisco StarOS operating system for 
Cisco  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3601 (A vulnerability in the CLI of Cisco StarOS operating system for 
Cisco  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3600
        RESERVED
 CVE-2020-3599
        RESERVED
 CVE-2020-3598 (A vulnerability in the web-based management interface of Cisco 
Vision  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3597 (A vulnerability in the configuration restore feature of Cisco 
Nexus Da ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3596 (A vulnerability in the Session Initiation Protocol (SIP) of 
Cisco Expr ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3595
        RESERVED
 CVE-2020-3594
@@ -56470,7 +56470,7 @@ CVE-2020-3591
 CVE-2020-3590
        RESERVED
 CVE-2020-3589 (A vulnerability in the web-based management interface of Cisco 
Identit ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3588
        RESERVED
 CVE-2020-3587
@@ -56512,9 +56512,9 @@ CVE-2020-3570
 CVE-2020-3569 (Multiple vulnerabilities in the Distance Vector Multicast 
Routing Prot ...)
        NOT-FOR-US: Cisco
 CVE-2020-3568 (A vulnerability in the antispam protection mechanisms of Cisco 
AsyncOS ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3567 (A vulnerability in the management REST API of Cisco Industrial 
Network ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3566 (A vulnerability in the Distance Vector Multicast Routing 
Protocol (DVM ...)
        NOT-FOR-US: Cisco
 CVE-2020-3565
@@ -56560,9 +56560,9 @@ CVE-2020-3546 (A vulnerability in the web-based 
management interface of Cisco As
 CVE-2020-3545 (A vulnerability in Cisco FXOS Software could allow an 
authenticated, l ...)
        NOT-FOR-US: Cisco
 CVE-2020-3544 (A vulnerability in the Cisco Discovery Protocol implementation 
for Cis ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3543 (A vulnerability in the Cisco Discovery Protocol of Cisco Video 
Surveil ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3542 (A vulnerability in Cisco Webex Training could allow an 
authenticated,  ...)
        NOT-FOR-US: Cisco
 CVE-2020-3541 (A vulnerability in the media engine component of Cisco Webex 
Meetings  ...)
@@ -56576,9 +56576,9 @@ CVE-2020-3538
 CVE-2020-3537 (A vulnerability in Cisco Jabber for Windows software could 
allow an au ...)
        NOT-FOR-US: Cisco
 CVE-2020-3536 (A vulnerability in the web-based management interface of Cisco 
SD-WAN  ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3535 (A vulnerability in the loading mechanism of specific DLLs in 
the Cisco ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3534
        RESERVED
 CVE-2020-3533
@@ -56717,7 +56717,7 @@ CVE-2020-3469
 CVE-2020-3468 (A vulnerability in the web-based management interface of Cisco 
SD-WAN  ...)
        NOT-FOR-US: Cisco
 CVE-2020-3467 (A vulnerability in the web-based management interface of Cisco 
Identit ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3466 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
        NOT-FOR-US: Cisco
 CVE-2020-3465 (A vulnerability in Cisco IOS XE Software could allow an 
unauthenticate ...)
@@ -57023,7 +57023,7 @@ CVE-2020-3322 (A vulnerability in Cisco Webex Network 
Recording Player and Cisco
 CVE-2020-3321 (A vulnerability in Cisco Webex Network Recording Player and 
Cisco Webe ...)
        NOT-FOR-US: Cisco
 CVE-2020-3320 (A vulnerability in the web-based management interface of Cisco 
Firepow ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2020-3319 (A vulnerability in Cisco Webex Network Recording Player and 
Cisco Webe ...)
        NOT-FOR-US: Cisco
 CVE-2020-3318 (Multiple vulnerabilities in Cisco Firepower Management Center 
(FMC) So ...)
@@ -60910,19 +60910,19 @@ CVE-2020-1909
 CVE-2020-1908
        RESERVED
 CVE-2020-1907 (A stack overflow in WhatsApp for Android prior to v2.20.196.16, 
WhatsA ...)
-       TODO: check
+       NOT-FOR-US: WhatsApp
 CVE-2020-1906 (A buffer overflow in WhatsApp for Android prior to v2.20.130 
and Whats ...)
-       TODO: check
+       NOT-FOR-US: WhatsApp
 CVE-2020-1905 (Media ContentProvider URIs used for opening attachments in 
other apps  ...)
-       TODO: check
+       NOT-FOR-US: WhatsApp
 CVE-2020-1904 (A path validation issue in WhatsApp for iOS prior to v2.20.61 
and What ...)
-       TODO: check
+       NOT-FOR-US: WhatsApp
 CVE-2020-1903 (An issue when unzipping docx, pptx, and xlsx documents in 
WhatsApp for ...)
-       TODO: check
+       NOT-FOR-US: WhatsApp
 CVE-2020-1902 (A user running a quick search on a highly forwarded message on 
WhatsAp ...)
-       TODO: check
+       NOT-FOR-US: WhatsApp
 CVE-2020-1901 (Receiving a large text message containing URLs in WhatsApp for 
iOS pri ...)
-       TODO: check
+       NOT-FOR-US: WhatsApp
 CVE-2020-1900
        RESERVED
 CVE-2020-1899
@@ -62389,7 +62389,7 @@ CVE-2019-19202 (In Vtiger 7.x before 7.2.0, the My 
Preferences saving functional
 CVE-2019-19201
        RESERVED
 CVE-2019-19200 (REDDOXX MailDepot 2032 2.2.1242 allows authenticated users to 
access t ...)
-       TODO: check
+       NOT-FOR-US: REDDOXX MailDepot
 CVE-2019-19199 (REDDOXX MailDepot 2032 SP2 2.2.1242 has Insufficient Session 
Expiratio ...)
        NOT-FOR-US: REDDOXX MailDepot
 CVE-2019-19198 (The Scoutnet Kalender plugin 1.1.0 for WordPress allows XSS. 
...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/311f4521abae10f5cea7f7dcaf5758faf722177b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/311f4521abae10f5cea7f7dcaf5758faf722177b
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to