diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2019-07-31 22:31:13 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2019-07-31 22:31:13 +0200 |
commit | 96922162e026999801a630764262ae4b8243ca97 (patch) | |
tree | 13c5fcc59522e19304e92e3e19f148067c59bb96 | |
parent | 2a88596fafa175b2971882ce18e26123f125a324 (diff) |
Process some NFUs
-rw-r--r-- | data/CVE/2007.list | 2 | ||||
-rw-r--r-- | data/CVE/2018.list | 2 | ||||
-rw-r--r-- | data/CVE/2019.list | 10 |
3 files changed, 7 insertions, 7 deletions
diff --git a/data/CVE/2007.list b/data/CVE/2007.list index fb7d17b7a7..f74891f06b 100644 --- a/data/CVE/2007.list +++ b/data/CVE/2007.list @@ -1,5 +1,5 @@ CVE-2007-6763 (SAS Drug Development (SDD) before 32DRG02 mishandles logout actions, w ...) - TODO: check + NOT-FOR-US: SAS Drug Development (SDD) CVE-2007-6762 (In the Linux kernel before 2.6.20, there is an off-by-one bug in net/n ...) - linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename) NOTE: https://git.kernel.org/linus/2a2f11c227bdf292b3a2900ad04139d301b56ac4 diff --git a/data/CVE/2018.list b/data/CVE/2018.list index b90903f882..b8dad1dba7 100644 --- a/data/CVE/2018.list +++ b/data/CVE/2018.list @@ -161,7 +161,7 @@ CVE-2018-20874 CVE-2018-20873 RESERVED CVE-2018-20872 (DrayTek routers before 2018-05-23 allow CSRF attacks to change DNS or ...) - TODO: check + NOT-FOR-US: DrayTek routers CVE-2018-20871 (In Univa Grid Engine before 8.6.3, when configured for Docker jobs and ...) TODO: check CVE-2018-20870 (The WebDAV transport feature in cPanel before 76.0.8 enables debug log ...) diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 6e02df05b5..c68009c894 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -379,7 +379,7 @@ CVE-2019-1020013 (parse-server before 3.6.0 allows account enumeration. ...) CVE-2019-1020012 (parse-server before 3.4.1 allows DoS after any POST to a volatile clas ...) TODO: check CVE-2019-1020011 (SmokeDetector intentionally does automatic deployments of updated copi ...) - TODO: check + NOT-FOR-US: SmokeDetector CVE-2019-1020010 (Misskey before 10.102.4 allows hijacking a user's token. ...) TODO: check CVE-2019-1020009 (Fleet before 2.1.2 allows exposure of SMTP credentials. ...) @@ -2986,7 +2986,7 @@ CVE-2019-13128 (An issue was discovered on D-Link DIR-823G devices with firmware CVE-2019-13127 (An issue was discovered in mxGraph through 4.0.0, related to the "draw ...) NOT-FOR-US: mxGraph CVE-2019-13126 (An integer overflow in NATS Server 2.0.0 allows a remote attacker to c ...) - TODO: check + NOT-FOR-US: NATS Server CVE-2019-13125 (HaboMalHunter through 2.0.0.3 in Tencent Habo allows attackers to evad ...) NOT-FOR-US: Tencent CVE-2019-13124 @@ -3263,7 +3263,7 @@ CVE-2019-13028 (An incorrect implementation of a local web server in eID client CVE-2019-13027 (Realization Concerto Critical Chain Planner (aka CCPM) 5.10.8071 has S ...) NOT-FOR-US: Realization Concerto Critical Chain Planner CVE-2019-13026 (OXID eShop 6.0.x before 6.0.5 and 6.1.x before 6.1.4 allows SQL Inject ...) - TODO: check + NOT-FOR-US: OXID eShop CVE-2019-13025 RESERVED CVE-2019-13024 (Centreon 18.x before 18.10.6, 19.x before 19.04.3, and Centreon web be ...) @@ -3857,7 +3857,7 @@ CVE-2019-12799 (In createInstanceFromNamedArguments in Shopware through 5.6.x, a CVE-2019-12798 (An issue was discovered in Artifex MuJS 1.0.5. regcompx in regexp.c do ...) NOT-FOR-US: MuJS CVE-2019-12797 (A clone version of an ELM327 OBD2 Bluetooth device has a hardcoded PIN ...) - TODO: check + NOT-FOR-US: ELM327 OBD2 Bluetooth device CVE-2019-12796 RESERVED CVE-2019-12795 (daemon/gvfsdaemon.c in gvfsd from GNOME gvfs before 1.38.3, 1.40.x bef ...) @@ -3992,7 +3992,7 @@ CVE-2019-12752 CVE-2019-12751 (Symantec Messaging Gateway, prior to 10.7.1, may be susceptible to a p ...) NOT-FOR-US: Symantec CVE-2019-12750 (Symantec Endpoint Protection, prior to 14.2 RU1 & 12.1 RU6 MP10 an ...) - TODO: check + NOT-FOR-US: Symantec Endpoint Protection CVE-2019-12749 (dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, ...) {DSA-4462-1 DLA-1818-1} - dbus 1.12.16-1 (bug #930375) |