Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: f4e7caa1 by Salvatore Bonaccorso at 2020-02-23T09:53:08+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -5,15 +5,15 @@ CVE-2020-9357 CVE-2020-9356 RESERVED CVE-2020-9354 (An issue was discovered in SmartClient 12.0. The Remote Procedure Call ...) - TODO: check + NOT-FOR-US: SmartClient CVE-2020-9353 (An issue was discovered in SmartClient 12.0. The Remote Procedure Call ...) - TODO: check + NOT-FOR-US: SmartClient CVE-2020-9352 (An issue was discovered in SmartClient 12.0. Unauthenticated exploitat ...) - TODO: check + NOT-FOR-US: SmartClient CVE-2020-9351 (An issue was discovered in SmartClient 12.0. If an unauthenticated att ...) - TODO: check + NOT-FOR-US: SmartClient CVE-2020-9350 (Graph Builder in SAS Visual Analytics 8.5 allows XSS via a graph templ ...) - TODO: check + NOT-FOR-US: Graph Builder in SAS Visual Analytics CVE-2020-9349 RESERVED CVE-2020-9348 @@ -29,19 +29,19 @@ CVE-2020-9344 CVE-2020-9343 RESERVED CVE-2020-9342 (The F-Secure AV parsing engine before 2020-02-05 allows virus-detectio ...) - TODO: check + NOT-FOR-US: F-Secure AV parsing engine CVE-2020-9341 (CandidATS 2.1.0 is vulnerable to CSRF that allows for an administrator ...) - TODO: check + NOT-FOR-US: CandidATS CVE-2020-9340 (fauzantrif eLection 2.0 has SQL Injection via the admin/ajax/op_kandid ...) - TODO: check + NOT-FOR-US: fauzantrif eLection CVE-2020-9339 (SOPlanning 1.45 allows XSS via the Name or Comment to status.php. ...) - TODO: check + NOT-FOR-US: SOPlanning CVE-2020-9338 (SOPlanning 1.45 allows XSS via the "Your SoPlanning url" field. ...) - TODO: check + NOT-FOR-US: SOPlanning CVE-2020-9337 RESERVED CVE-2020-9336 (fauzantrif eLection 2.0 has XSS via the Admin Dashboard -> Settings ...) - TODO: check + NOT-FOR-US: fauzantrif eLection CVE-2020-XXXX [mutation XSS vulnerability] - python-bleach 3.1.1-1 (bug #951907) NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1615315 (not public) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f4e7caa1ffd36e5977ebc97a1593aeecb810edf9 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f4e7caa1ffd36e5977ebc97a1593aeecb810edf9 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits