[Secure-testing-commits] r50868 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Apr 21 05:23:40 UTC 2017


Author: carnil
Date: 2017-04-21 05:23:39 +0000 (Fri, 21 Apr 2017)
New Revision: 50868

Modified:
   data/CVE/list
Log:
Process some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-21 04:18:15 UTC (rev 50867)
+++ data/CVE/list	2017-04-21 05:23:39 UTC (rev 50868)
@@ -37334,11 +37334,11 @@
 CVE-2016-4845 (Cross-site request forgery (CSRF) vulnerability on I-O DATA DEVICE ...)
 	NOT-FOR-US: I-O DATA
 CVE-2016-4844 (Cybozu Mailwise before 5.4.0 allows remote attackers to conduct ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-4843 (Cybozu Mailwise before 5.4.0 allows remote attackers to obtain ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-4842 (Cybozu Mailwise before 5.4.0 allows remote attackers to obtain ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-4841
 	RESERVED
 CVE-2016-4840
@@ -49145,21 +49145,21 @@
 CVE-2016-1221
 	RESERVED
 CVE-2016-1220 (Cybozu Garoon before 4.2.2 does not properly restrict access. ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-1219 (Cybozu Garoon before 4.2.2 allows remote attackers to bypass login ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-1218 (SQL injection vulnerability in Cybozu Garoon before 4.2.2. ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-1217 (Cross-site scripting (XSS) vulnerability in the "Check available ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-1216 (Cross-site scripting (XSS) vulnerability in the "New appointment" ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-1215 (Cross-site scripting (XSS) vulnerability in the "User details" ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-1214 (Cross-site scripting (XSS) vulnerability in the "Response request" ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-1213 (The "Scheduler" function in Cybozu Garoon before 4.2.2 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2016-1212 (Directory traversal vulnerability in futomi MP Form Mail CGI ...)
 	NOT-FOR-US: futomi MP Form Mail CGI Professional Edition
 CVE-2016-1211 (Cross-site scripting (XSS) vulnerability in Epoch Web Mailing List ...)




More information about the Secure-testing-commits mailing list