Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8567d6bb by Salvatore Bonaccorso at 2019-09-16T20:18:17Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2019-16373
CVE-2019-16372
RESERVED
CVE-2019-16371 (LogMeIn LastPass before 4.33.0 allows attackers to construct a
crafted ...)
- TODO: check
+ NOT-FOR-US: LogMeIn LastPass
CVE-2019-16370 (The PGP signing plugin in Gradle before 6.0 relies on the
SHA-1 algori ...)
TODO: check
CVE-2019-16369
@@ -37,11 +37,11 @@ CVE-2019-16357
CVE-2019-16356
RESERVED
CVE-2019-16355 (The File Session Manager in Beego 1.10.0 allows local users to
read se ...)
- TODO: check
+ NOT-FOR-US: Beego
CVE-2019-16354 (The File Session Manager in Beego 1.10.0 allows local users to
read se ...)
- TODO: check
+ NOT-FOR-US: Beego
CVE-2019-16353 (Emerson GE Automation Proficy Machine Edition 8.0 allows an
access vio ...)
- TODO: check
+ NOT-FOR-US: Emerson GE Automation Proficy Machine Edition
CVE-2019-16352 (ffjpeg before 2019-08-21 has a heap-based buffer overflow in
jfif_load ...)
TODO: check
CVE-2019-16351 (ffjpeg before 2019-08-18 has a NULL pointer dereference in
huffman_dec ...)
@@ -49,13 +49,13 @@ CVE-2019-16351 (ffjpeg before 2019-08-18 has a NULL pointer
dereference in huffm
CVE-2019-16350 (ffjpeg before 2019-08-18 has a NULL pointer dereference in
idct2d8x8() ...)
TODO: check
CVE-2019-16349 (Bento4 1.5.1-628 has a NULL pointer dereference in
AP4_ByteStream::Rea ...)
- TODO: check
+ NOT-FOR-US: Bento4
CVE-2019-16348 (marc-q libwav through 2019-08-15 has a NULL pointer
dereference in gai ...)
- TODO: check
+ NOT-FOR-US: libwav
CVE-2019-16347 (ngiflib 0.4 has a heap-based buffer overflow in WritePixels()
in ngifl ...)
- TODO: check
+ NOT-FOR-US: ngiflib
CVE-2019-16346 (ngiflib 0.4 has a heap-based buffer overflow in WritePixel()
in ngifli ...)
- TODO: check
+ NOT-FOR-US: ngiflib
CVE-2019-16345
RESERVED
CVE-2019-16344
@@ -238,7 +238,7 @@ CVE-2016-10959 (The estatik plugin before 2.3.1 for
WordPress has authenticated
CVE-2016-10958 (The estatik plugin before 2.3.0 for WordPress has
unauthenticated arbi ...)
NOT-FOR-US: estatik plugin for WordPress
CVE-2016-10957 (The Akal theme through 2016-08-22 for WordPress has XSS via
the framew ...)
- TODO: check
+ NOT-FOR-US: Akal theme for WordPress
CVE-2016-10956 (The mail-masta plugin 1.0 for WordPress has local file
inclusion in co ...)
NOT-FOR-US: mail-masta plugin for WordPress
CVE-2010-5333 (The web server in Integard Pro and Home before 2.0.0.9037 and
2.2.x be ...)
@@ -274,7 +274,7 @@ CVE-2019-16266
CVE-2019-16265
RESERVED
CVE-2019-16264 (In Escuela de Gestion Publica Plurinacional (EGPP) Sistema
Integrado d ...)
- TODO: check
+ NOT-FOR-US: Escuela de Gestion Publica Plurinacional (EGPP) Sistema
Integrado de Gestion Academica (GESAC)
CVE-2019-16263
RESERVED
CVE-2019-16262
@@ -880,7 +880,7 @@ CVE-2019-16058 (An issue was discovered in the pam_p11
component 0.2.0 and 0.3.0
- pam-p11 <unfixed> (bug #939664)
NOTE:
https://github.com/OpenSC/pam_p11/commit/d150b60e1e14c261b113f55681419ad1dfa8a76c
CVE-2019-16057 (The login_mgr.cgi script in D-Link DNS-320 through 2.05.B10 is
vulnera ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2019-16056 (An issue was discovered in Python through 2.7.16, 3.x through
3.5.7, 3 ...)
- python3.8 3.8.0~b4-1
- python3.7 <unfixed>
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8567d6bb45651c24d1cca33d5b9a50baa2e42448
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8567d6bb45651c24d1cca33d5b9a50baa2e42448
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
