Process NFUs

author: Salvatore Bonaccorso <carnil@debian.org> 2021-04-03 09:29:14 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-04-03 09:29:14 +0200
commit: e297305e6a02bd6ea2c508538d926beef740c408 (patch)
tree: c0e9adffe02bcade473136c5843b3d931c60f696 /data/CVE/2020.list
parent: f7c1220cbd1470ebd874cfe19643898ec1651ba9 (diff)
1 files changed, 70 insertions, 70 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index f8580116ca..8ec71c9ae1 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -2981,7 +2981,7 @@ CVE-2020-29641
 CVE-2020-29640
 	RESERVED
 CVE-2020-29639 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29638
 	RESERVED
 CVE-2020-29637
@@ -2993,7 +2993,7 @@ CVE-2020-29635
 CVE-2020-29634
 	RESERVED
 CVE-2020-29633 (An authentication issue was addressed with improved state management.  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29632
 	RESERVED
 CVE-2020-29631
@@ -3009,9 +3009,9 @@ CVE-2020-29627
 CVE-2020-29626
 	RESERVED
 CVE-2020-29625 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29624 (A memory corruption issue existed in the processing of font files. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29623 ("Clear History and Website Data" did not clear the history. The issue  ...)
 	{DSA-4877-1}
 	- webkit2gtk 2.30.6-1
@@ -3021,33 +3021,33 @@ CVE-2020-29623 ("Clear History and Website Data" did not clear the history. The
 CVE-2020-29622
 	RESERVED
 CVE-2020-29621 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29620 (This issue was addressed with improved entitlements. This issue is fix ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29619 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29618 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29617 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29616 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29615 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29614 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29613 (A logic issue was addressed with improved state management. This issue ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29612 (An out-of-bounds write issue was addressed with improved bounds checki ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29611 (An out-of-bounds write issue was addressed with improved bounds checki ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29610 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29609
 	RESERVED
 CVE-2020-29608 (An out-of-bounds read was addressed with improved bounds checking. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-29607 (A file upload restriction bypass vulnerability in Pluck CMS before 4.7 ...)
 	NOT-FOR-US: Pluck CMS
 CVE-2020-35921 (An issue was discovered in the miow crate before 0.3.6 for Rust. It ha ...)
@@ -5987,7 +5987,7 @@ CVE-2020-28348 (HashiCorp Nomad and Nomad Enterprise 0.9.0 up to 0.12.7 client D
 CVE-2020-28347 (tdpServer on TP-Link Archer A7 AC1750 devices before 201029 allows rem ...)
 	NOT-FOR-US: TP-Link
 CVE-2020-28346 (ACRN through 2.2 has a devicemodel/hw/pci/virtio/virtio.c NULL Pointer ...)
-	TODO: check
+	NOT-FOR-US: ACRN
 CVE-2020-28345 (An issue was discovered on LG mobile devices with Android OS 10 softwa ...)
 	NOT-FOR-US: LG mobile devices
 CVE-2020-28344 (An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, ...)
@@ -6856,49 +6856,49 @@ CVE-2020-27954
 CVE-2020-27953
 	RESERVED
 CVE-2020-27952 (An out-of-bounds write was addressed with improved input validation. T ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27951 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27950 (A memory initialization issue was addressed. This issue is fixed in ma ...)
 	NOT-FOR-US: Apple
 CVE-2020-27949 (This issue was addressed with improved checks to prevent unauthorized  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27948 (An out-of-bounds write issue was addressed with improved bounds checki ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27947 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27946 (An information disclosure issue was addressed with improved state mana ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27945 (An integer overflow was addressed with improved input validation. This ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27944 (A memory corruption issue existed in the processing of font files. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27943 (A memory corruption issue existed in the processing of font files. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27942
 	RESERVED
 CVE-2020-27941 (A validation issue was addressed with improved logic. This issue is fi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27940
 	RESERVED
 CVE-2020-27939 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27938 (A logic issue was addressed with improved state management. This issue ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27937 (A logic issue was addressed with improved state management. This issue ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27936 (An out-of-bounds read issue existed that led to the disclosure of kern ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27935 (Multiple issues were addressed with improved logic. This issue is fixe ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27934
 	RESERVED
 CVE-2020-27933 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27932 (A type confusion issue was addressed with improved state handling. Thi ...)
 	NOT-FOR-US: Apple
 CVE-2020-27931 (A memory corruption issue existed in the processing of font files. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27930 (A memory corruption issue was addressed with improved input validation ...)
 	NOT-FOR-US: Apple
 CVE-2020-27929 (A logic issue existed in the handling of Group FaceTime calls. The iss ...)
@@ -6912,17 +6912,17 @@ CVE-2020-27926 (A use after free issue was addressed with improved memory manage
 CVE-2020-27925 (An issue existed in the handling of incoming calls. The issue was addr ...)
 	NOT-FOR-US: Apple
 CVE-2020-27924 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27923 (An out-of-bounds write was addressed with improved input validation. T ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27922 (A logic issue was addressed with improved state management. This issue ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27921 (A race condition was addressed with improved state handling. This issu ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27920 (A use after free issue was addressed with improved memory management.  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27919 (An out-of-bounds write was addressed with improved input validation. T ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27918 (A use after free issue was addressed with improved memory management.  ...)
 	{DSA-4877-1}
 	- webkit2gtk 2.30.6-1
@@ -6934,9 +6934,9 @@ CVE-2020-27917 (A use after free issue was addressed with improved memory manage
 CVE-2020-27916 (An out-of-bounds write was addressed with improved input validation. T ...)
 	NOT-FOR-US: Apple
 CVE-2020-27915 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27914 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27913
 	RESERVED
 CVE-2020-27912 (An out-of-bounds write was addressed with improved input validation. T ...)
@@ -6948,9 +6948,9 @@ CVE-2020-27910 (An out-of-bounds read was addressed with improved input validati
 CVE-2020-27909 (An out-of-bounds read was addressed with improved input validation. Th ...)
 	NOT-FOR-US: Apple
 CVE-2020-27908 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27907 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27906 (Multiple integer overflows were addressed with improved input validati ...)
 	NOT-FOR-US: Apple
 CVE-2020-27905 (A memory corruption issue was addressed with improved state management ...)
@@ -6962,15 +6962,15 @@ CVE-2020-27903 (This issue was addressed by removing the vulnerable code. This i
 CVE-2020-27902 (An authentication issue was addressed with improved state management.  ...)
 	NOT-FOR-US: Apple
 CVE-2020-27901 (A logic issue was addressed with improved restrictions. This issue is  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27900 (An issue existed in the handling of snapshots. The issue was resolved  ...)
 	NOT-FOR-US: Apple
 CVE-2020-27899 (A use after free issue was addressed with improved memory management.  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27898 (A denial of service issue was addressed with improved state handling.  ...)
 	NOT-FOR-US: Apple
 CVE-2020-27897 (An out-of-bounds write issue was addressed with improved bounds checki ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27896 (A path handling issue was addressed with improved validation. This iss ...)
 	NOT-FOR-US: Apple
 CVE-2020-27895 (An information disclosure issue existed in the transition of program s ...)
@@ -6978,7 +6978,7 @@ CVE-2020-27895 (An information disclosure issue existed in the transition of pro
 CVE-2020-27894 (The issue was addressed with additional user controls. This issue is f ...)
 	NOT-FOR-US: Apple
 CVE-2020-27893 (An issue existed in screen sharing. This issue was addressed with impr ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-27892 (The Zigbee protocol implementation on Texas Instruments CC2538 devices ...)
 	NOT-FOR-US: Texas Instruments CC2538 devices
 CVE-2020-27891 (The Zigbee protocol implementation on Texas Instruments CC2538 devices ...)
@@ -24928,13 +24928,13 @@ CVE-2020-19621
 CVE-2020-19620
 	RESERVED
 CVE-2020-19619 (Cross Site Scripting (XSS) vulnerability in mblog 3.5 via the signatur ...)
-	TODO: check
+	NOT-FOR-US: mblog
 CVE-2020-19618 (Cross Site Scripting (XSS) vulnerability in mblog 3.5 via the post con ...)
-	TODO: check
+	NOT-FOR-US: mblog
 CVE-2020-19617 (Cross Site Scripting (XSS) vulnerability in mblog 3.5 via the nickname ...)
-	TODO: check
+	NOT-FOR-US: mblog
 CVE-2020-19616 (Cross Site Scripting (XSS) vulnerability in mblog 3.5 via the post hea ...)
-	TODO: check
+	NOT-FOR-US: mblog
 CVE-2020-19615
 	RESERVED
 CVE-2020-19614
@@ -43030,13 +43030,13 @@ CVE-2020-11927
 CVE-2020-11926
 	RESERVED
 CVE-2020-11925 (An issue was discovered in Luvion Grand Elite 3 Connect through 2020-0 ...)
-	TODO: check
+	NOT-FOR-US: Luvion Grand Elite 3 Connect
 CVE-2020-11924 (An issue was discovered in WiZ Colors A60 1.14.0. Wi-Fi credentials ar ...)
-	TODO: check
+	NOT-FOR-US: WiZ Colors A60
 CVE-2020-11923 (An issue was discovered in WiZ Colors A60 1.14.0. API credentials are  ...)
-	TODO: check
+	NOT-FOR-US: WiZ Colors A60
 CVE-2020-11922 (An issue was discovered in WiZ Colors A60 1.14.0. The device sends unn ...)
-	TODO: check
+	NOT-FOR-US: WiZ Colors A60
 CVE-2020-11921
 	RESERVED
 CVE-2020-11920 (An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3. ...)
@@ -47948,7 +47948,7 @@ CVE-2020-9997 (An information disclosure issue was addressed with improved state
 CVE-2020-9996 (A use after free issue was addressed with improved memory management.  ...)
 	NOT-FOR-US: Apple
 CVE-2020-9995 (An issue existed in the parsing of URLs. This issue was addressed with ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9994 (A path handling issue was addressed with improved validation. This iss ...)
 	NOT-FOR-US: Apple
 CVE-2020-9993 (The issue was addressed with improved UI handling. This issue is fixed ...)
@@ -47988,13 +47988,13 @@ CVE-2020-9980 (An out-of-bounds write issue was addressed with improved bounds c
 CVE-2020-9979 (A trust issue was addressed by removing a legacy API. This issue is fi ...)
 	NOT-FOR-US: Apple
 CVE-2020-9978 (This issue was addressed with improved setting propagation. This issue ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9977 (A validation issue existed in the entitlement verification. This issue ...)
 	NOT-FOR-US: Apple
 CVE-2020-9976 (A logic issue was addressed with improved state management. This issue ...)
 	NOT-FOR-US: Apple
 CVE-2020-9975 (A use after free issue was addressed with improved memory management.  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9974 (A logic issue was addressed with improved state management. This issue ...)
 	NOT-FOR-US: Apple
 CVE-2020-9973 (An out-of-bounds read was addressed with improved bounds checking. Thi ...)
@@ -48002,7 +48002,7 @@ CVE-2020-9973 (An out-of-bounds read was addressed with improved bounds checking
 CVE-2020-9972 (A buffer overflow issue was addressed with improved memory handling. T ...)
 	NOT-FOR-US: Apple
 CVE-2020-9971 (A logic issue was addressed with improved validation. This issue is fi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9970
 	RESERVED
 CVE-2020-9969 (An access issue was addressed with additional sandbox restrictions. Th ...)
@@ -48010,7 +48010,7 @@ CVE-2020-9969 (An access issue was addressed with additional sandbox restriction
 CVE-2020-9968 (A logic issue was addressed with improved restrictions. This issue is  ...)
 	NOT-FOR-US: Apple
 CVE-2020-9967 (Multiple memory corruption issues were addressed with improved input v ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9966 (An out-of-bounds read was addressed with improved input validation. Th ...)
 	NOT-FOR-US: Apple
 CVE-2020-9965 (An out-of-bounds read was addressed with improved input validation. Th ...)
@@ -48020,11 +48020,11 @@ CVE-2020-9964 (A memory initialization issue was addressed with improved memory
 CVE-2020-9963 (The issue was addressed with improved handling of icon caches. This is ...)
 	NOT-FOR-US: Apple
 CVE-2020-9962 (A buffer overflow was addressed with improved size validation. This is ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9961 (An out-of-bounds read was addressed with improved input validation. Th ...)
 	NOT-FOR-US: Apple
 CVE-2020-9960 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9959 (A lock screen issue allowed access to messages on a locked device. Thi ...)
 	NOT-FOR-US: Apple
 CVE-2020-9958 (An out-of-bounds write issue was addressed with improved bounds checki ...)
@@ -48032,9 +48032,9 @@ CVE-2020-9958 (An out-of-bounds write issue was addressed with improved bounds c
 CVE-2020-9957
 	RESERVED
 CVE-2020-9956 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9955 (An out-of-bounds write issue was addressed with improved bounds checki ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9954 (A buffer overflow issue was addressed with improved memory handling. T ...)
 	NOT-FOR-US: Apple
 CVE-2020-9953
@@ -48103,7 +48103,7 @@ CVE-2020-9932 (A memory corruption issue was addressed with improved validation.
 CVE-2020-9931 (A denial of service issue was addressed with improved input validation ...)
 	NOT-FOR-US: Apple
 CVE-2020-9930 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9929 (A memory corruption issue was addressed with improved memory handling. ...)
 	NOT-FOR-US: Apple
 CVE-2020-9928 (Multiple memory corruption issues were addressed with improved memory  ...)
@@ -48111,7 +48111,7 @@ CVE-2020-9928 (Multiple memory corruption issues were addressed with improved me
 CVE-2020-9927 (A memory corruption issue was addressed with improved input validation ...)
 	NOT-FOR-US: Apple
 CVE-2020-9926 (A use after free issue was addressed with improved memory management.  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-9925 (A logic issue was addressed with improved state management. This issue ...)
 	{DSA-4739-1}
 	- webkit2gtk 2.28.4-1
@@ -48529,7 +48529,7 @@ CVE-2020-10017 (An out-of-bounds write was addressed with improved input validat
 CVE-2020-10016 (A memory corruption issue was addressed with improved state management ...)
 	NOT-FOR-US: Apple
 CVE-2020-10015 (An out-of-bounds write issue was addressed with improved bounds checki ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-10014 (A parsing issue in the handling of directory paths was addressed with  ...)
 	NOT-FOR-US: Apple
 CVE-2020-10013 (A logic issue was addressed with improved state management. This issue ...)
@@ -48543,7 +48543,7 @@ CVE-2020-10010 (A path handling issue was addressed with improved validation. Th
 CVE-2020-10009 (A logic issue was addressed with improved state management. This issue ...)
 	NOT-FOR-US: Apple
 CVE-2020-10008 (A logic issue was addressed with improved restrictions. This issue is  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-10007 (A logic issue was addressed with improved state management. This issue ...)
 	NOT-FOR-US: Apple
 CVE-2020-10006 (This issue was addressed with improved entitlements. This issue is fix ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-04-03 09:29:14 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-04-03 09:29:14 +0200
commit	e297305e6a02bd6ea2c508538d926beef740c408 (patch)
tree	c0e9adffe02bcade473136c5843b3d931c60f696 /data/CVE/2020.list
parent	f7c1220cbd1470ebd874cfe19643898ec1651ba9 (diff)