[Git][security-tracker-team/security-tracker][master] new dompurify issue, NFUs

2020-10-08 Thread Moritz Muehlenhoff 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
823e3581 by Moritz Muehlenhoff at 2020-10-08T13:15:56+02:00
new dompurify issue, NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=
data/CVE/list
=
@@ -19,7 +19,7 @@ CVE-2020-26878
 CVE-2020-26877
RESERVED
 CVE-2020-26876 (The wp-courses plugin through 2.0.27 for WordPress allows 
remote attac ...)
-   TODO: check
+   NOT-FOR-US: Wordpress plugin
 CVE-2020-26875
RESERVED
 CVE-2020-26874
@@ -31,7 +31,8 @@ CVE-2020-26872
 CVE-2020-26871
RESERVED
 CVE-2020-26870 (Cure53 DOMPurify before 2.0.17 allows mutation XSS. This 
occurs becaus ...)
-   TODO: check
+   - dompurify.js 
+   NOTE: 
https://research.securitum.com/mutation-xss-via-mathml-mutation-dompurify-2-0-17-bypass/
 CVE-2020-26869
RESERVED
 CVE-2020-26868
@@ -579,7 +580,7 @@ CVE-2020-26598 (An issue was discovered on LG mobile 
devices with Android OS 8.0
 CVE-2020-26597 (An issue was discovered on LG mobile devices with Android OS 
9.0 and 1 ...)
NOT-FOR-US: LG mobile devices
 CVE-2020-26596 (The Dynamic OOO widget for the Elementor Pro plugin through 
3.0.5 for  ...)
-   TODO: check
+   NOT-FOR-US: Wordpress plugin
 CVE-2020-26595
RESERVED
 CVE-2020-26594
@@ -1910,7 +1911,7 @@ CVE-2020-25987 (MonoCMS Blog 1.0 stores hard-coded admin 
hashes in the log.xml f
 CVE-2020-25986 (A Cross Site Request Forgery (CSRF) vulnerability in MonoCMS 
Blog 1.0  ...)
NOT-FOR-US: MonoCMS Blog
 CVE-2020-25985 (MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Any 
authenti ...)
-   TODO: check
+   NOT-FOR-US: MonoCMS Blog
 CVE-2020-25984
RESERVED
 CVE-2020-25983
@@ -2150,7 +2151,7 @@ CVE-2020-25869 (An information leak was discovered in 
MediaWiki before 1.31.10 a
 CVE-2020-25868
RESERVED
 CVE-2020-25867 (SoPlanning before 1.47 doesn't correctly check the security 
key used t ...)
-   TODO: check
+   NOT-FOR-US: SoPlanning
 CVE-2020-25866 (In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP 
protocol dis ...)
- wireshark 3.2.7-1
[buster] - wireshark  (Vulnerable code not present)
@@ -2398,7 +2399,7 @@ CVE-2020-25770 (An out-of-bounds read information 
disclosure vulnerabilities in
 CVE-2020-25769
RESERVED
 CVE-2020-25768 (Contao before 4.4.52, 4.9.x before 4.9.6, and 4.10.x before 
4.10.1 hav ...)
-   TODO: check
+   NOT-FOR-US: Contao CMS
 CVE-2020-25767
RESERVED
 CVE-2020-25766 (An issue was discovered in MISP before 2.4.132. It can perform 
an unwa ...)
@@ -3338,7 +3339,7 @@ CVE-2020-25345
 CVE-2020-25344
RESERVED
 CVE-2020-25343 (Cross-site scripting (XSS) vulnerabilities in Symphony CMS 
3.0.0 allow ...)
-   TODO: check
+   NOT-FOR-US: Symphony CMS
 CVE-2020-25342
RESERVED
 CVE-2020-25341
@@ -4543,7 +4544,7 @@ CVE-2020-24809
 CVE-2020-24808
RESERVED
 CVE-2020-24807 (** UNSUPPORTED WHEN ASSIGNED ** The socket.io-file package 
through 2.0 ...)
-   TODO: check
+   NOT-FOR-US: Node socket.io-file
 CVE-2020-24806
RESERVED
 CVE-2020-24805
@@ -4718,7 +4719,7 @@ CVE-2020-24724
 CVE-2020-24723
RESERVED
 CVE-2020-24722 (** DISPUTED ** An issue was discovered in the GAEN (aka 
Google/Apple E ...)
-   TODO: check
+   NOT-FOR-US: GAEN (Google Apple Encounter Notification) protocol
 CVE-2020-24721 (An issue was discovered in the GAEN (aka Google/Apple Exposure 
Notific ...)
NOT-FOR-US: GAEN (Google Apple Encounter Notification) protocol
 CVE-2020-24720
@@ -5771,7 +5772,7 @@ CVE-2020-24248
 CVE-2020-24247
RESERVED
 CVE-2020-24246 (Peplink Balance before 8.1.0rc1 allows an unauthenticated 
attacker to  ...)
-   TODO: check
+   NOT-FOR-US: Peplink Balance
 CVE-2020-24245
RESERVED
 CVE-2020-24244
@@ -19176,7 +19177,7 @@ CVE-2020-17553
 CVE-2020-17552
RESERVED
 CVE-2020-17551 (ImpressCMS 1.4.0 is affected by XSS in 
modules/system/admin.php which  ...)
-   TODO: check
+   NOT-FOR-US: ImpressCMS
 CVE-2020-17550
RESERVED
 CVE-2020-17549
@@ -23883,7 +23884,7 @@ CVE-2020-15502 (** DISPUTED ** The DuckDuckGo 
application through 5.58.0 for And
 CVE-2019-20894 (Traefik 2.x, in certain configurations, allows HTTPS sessions 
to proce ...)
NOT-FOR-US: Traefik
 CVE-2020-15501 (** UNSUPPORTED WHEN ASSIGNED ** Smarter Coffee Maker before 
2nd genera ...)
-   TODO: check
+   NOT-FOR-US: Smarter Coffee Maker
 CVE-2020-15500 (An issue was discovered in server.js in TileServer GL through 
3.0.0. T ...)
NOT-FOR-US: TileServer GL
 CVE-2020-15499 (An issue was discovered on ASUS RT-AC1900P routers before 
3.0.0.4.385_ ...)
@@ -24491,15 +24492,15 @@ CVE-2020-15241
 CVE-2020-15240
RESERVED
 CVE-2020-15239 (In xmpp-http-upload before version 0.4.0, when the GET method 
is attac ...)
-   TODO: check

[Git][security-tracker-team/security-tracker][master] new dompurify issue

2019-09-25 Thread Moritz Muehlenhoff 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
317bbbe9 by Moritz Muehlenhoff at 2019-09-25T08:26:34Z
new dompurify issue
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=
data/CVE/list
=
@@ -211,7 +211,7 @@ CVE-2019-16761
 CVE-2019-16760
RESERVED
 CVE-2019-16759 (vBulletin 5.x through 5.5.4 allows remote command execution 
via the wi ...)
-   TODO: check
+   NOT-FOR-US: vBulletin
 CVE-2019-16758
RESERVED
 CVE-2019-16757
@@ -227,7 +227,7 @@ CVE-2019-16753
 CVE-2019-16752
RESERVED
 CVE-2019-16751 (An issue was discovered in Devise Token Auth through 1.1.2. 
The omniau ...)
-   TODO: check
+   NOT-FOR-US: Devise Token Auth
 CVE-2019-16750
RESERVED
 CVE-2019-16749
@@ -270,7 +270,8 @@ CVE-2019-16731
 CVE-2019-16730
RESERVED
 CVE-2019-16728 (DOMPurify before 2.0.1 allows XSS because of innerHTML 
mutation XSS (m ...)
-   TODO: check
+   - dompurify.js 
+   NOTE: https://research.securitum.com/dompurify-bypass-using-mxss/
 CVE-2019-16746 (An issue was discovered in net/wireless/nl80211.c in the Linux 
kernel  ...)
- linux 
NOTE: https://marc.info/?l=linux-wireless=156901391225058=2
@@ -279,9 +280,9 @@ CVE-2019-16727
 CVE-2019-16726
RESERVED
 CVE-2019-16725 (In Joomla! 3.x before 3.9.12, inadequate escaping allowed XSS 
attacks  ...)
-   TODO: check
+   NOT-FOR-US: Joomla!
 CVE-2019-16724 (File Sharing Wizard 1.5.0 allows a remote attacker to obtain 
arbitrary ...)
-   TODO: check
+   NOT-FOR-US: File Sharing Wizard
 CVE-2019-16723 (In Cacti through 1.2.6, authenticated users may bypass 
authorization c ...)
- cacti  (bug #941036)
NOTE: https://github.com/Cacti/cacti/issues/2964
@@ -326,7 +327,7 @@ CVE-2019-16707 (Hunspell 1.7.0 has an invalid read 
operation in SuggestMgr::left
 CVE-2019-16706 (kkcms v1.3 has a CSRF vulnerablity that can add an user 
account via ad ...)
NOT-FOR-US: kkcms
 CVE-2018-21019 (Home Assistant before 0.67.0 was vulnerable to an information 
disclosu ...)
-   TODO: check
+   NOT-FOR-US: Home Assistant
 CVE-2019-16729 (pam-python before 1.0.7-1 has an issue in regard to the 
default enviro ...)
- pam-python 1.0.7-1
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1150510#c1
@@ -338,11 +339,11 @@ CVE-2019-16705 (Ming (aka libming) 0.4.8 has an out of 
bounds read vulnerability
- ming 
NOTE: https://github.com/libming/libming/issues/178
 CVE-2019-16704 (admin/infoclass_update.php in PHPMyWind 5.6 has stored XSS. 
...)
-   TODO: check
+   NOT-FOR-US: PHPMyWind
 CVE-2019-16703 (admin/infolist_add.php in PHPMyWind 5.6 has stored XSS. ...)
-   TODO: check
+   NOT-FOR-US: PHPMyWind
 CVE-2019-16702 (Integard Pro 2.2.0.9026 allows remote attackers to execute 
arbitrary c ...)
-   TODO: check
+   NOT-FOR-US: Integard Pro
 CVE-2019-16701
RESERVED
 CVE-2019-16700
@@ -384,9 +385,9 @@ CVE-2019-16683
 CVE-2019-16682
RESERVED
 CVE-2018-21018 (Mastodon before 2.6.3 mishandles timeouts of incompletely 
established  ...)
-   TODO: check
+   NOT-FOR-US: Mastodon
 CVE-2019-16681 (The Traveloka application 3.14.0 for Android exports 
com.traveloka.and ...)
-   TODO: check
+   NOT-FOR-US: Traveloka
 CVE-2019-16680 (An issue was discovered in GNOME file-roller before 3.29.91. 
It allows ...)
- file-roller 3.30.0-1
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=794337
@@ -804,7 +805,7 @@ CVE-2019-16520
 CVE-2019-16519
RESERVED
 CVE-2019-16518 (An issue was discovered on Swell Kit Mod devices that use the 
Vandy Va ...)
-   TODO: check
+   NOT-FOR-US: Swell Kit Mod devices
 CVE-2019-16517
RESERVED
 CVE-2019-16516
@@ -1079,7 +1080,7 @@ CVE-2019-16385
 CVE-2019-16384
RESERVED
 CVE-2019-16383 (MOVEit.DMZ.WebApi.dll in Progress MOVEit Transfer 2018 SP2 
before 10.2 ...)
-   TODO: check
+   NOT-FOR-US: Progress MOVEit Transfer
 CVE-2019-16382
RESERVED
 CVE-2019-16381



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/317bbbe9cb1abc5e7341a1d8bbdb461840770ed8

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/317bbbe9cb1abc5e7341a1d8bbdb461840770ed8
You're receiving this email because of your account on salsa.debian.org.


___
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits