[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso Wed, 19 Feb 2020 12:31:31 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ee063e8d by Salvatore Bonaccorso at 2020-02-19T21:30:12+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -742,7 +742,7 @@ CVE-2020-8961
 CVE-2020-8960
        RESERVED
 CVE-2020-8959 (Western Digital WesternDigitalSSDDashboardSetup.exe before 
3.0.2.0 all ...)
-       TODO: check
+       NOT-FOR-US: Western Digital
 CVE-2020-8958
        RESERVED
 CVE-2020-8957
@@ -1037,7 +1037,7 @@ CVE-2020-8826
 CVE-2020-8825 (index.php?p=/dashboard/settings/branding in Vanilla 2.6.3 
allows store ...)
        NOT-FOR-US: Vanilla Forums
 CVE-2020-8824 (Hitron CODA-4582U 7.1.1.30 devices allow XSS via a Managed 
Device name ...)
-       TODO: check
+       NOT-FOR-US: Hitron devices
 CVE-2020-8823 (htmlfile in lib/transport/htmlfile.js in SockJS before 3.0 is 
vulnerab ...)
        NOT-FOR-US: SockJS
 CVE-2020-8822 (Digi TransPort WR21 5.2.2.3, WR44 5.1.6.4, and WR44v2 5.1.6.9 
devices  ...)
@@ -43189,7 +43189,7 @@ CVE-2019-12440 (The Sitecore Rocks plugin before 
2.1.149 for Sitecore allows an
 CVE-2019-12438
        RESERVED
 CVE-2019-12437 (In SilverStripe through 4.3.3, the previous fix for 
SS-2018-007 does n ...)
-       TODO: check
+       NOT-FOR-US: SilverStripe
 CVE-2019-12436 (Samba 4.10.x before 4.10.5 has a NULL pointer dereference, 
leading to  ...)
        - samba <not-affected> (Only affects Samba since 4.10.0)
        NOTE: https://www.samba.org/samba/security/CVE-2019-12436.html
@@ -43723,7 +43723,7 @@ CVE-2019-12247 (** DISPUTED ** QEMU 3.0.0 has an 
Integer Overflow because the qg
        NOTE: 
https://lists.gnu.org/archive/html/qemu-devel/2019-05/msg05457.html
        NOTE: Disputed upstream as not beeing exploitable.
 CVE-2019-12246 (SilverStripe through 4.3.3 allows a Denial of Service on flush 
and dev ...)
-       TODO: check
+       NOT-FOR-US: SilverStripe
 CVE-2019-12245 (SilverStripe through 4.3.3 has incorrect access control for 
protected  ...)
        NOT-FOR-US: SilverStripe
 CVE-2019-12244



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ee063e8dfc238c2fdf21df63ed16e005b85f8c54

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ee063e8dfc238c2fdf21df63ed16e005b85f8c54
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process more NFUs

Reply via email to