[Secure-testing-commits] r51013 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Mon Apr 24 21:16:59 UTC 2017


Author: jmm
Date: 2017-04-24 21:16:59 +0000 (Mon, 24 Apr 2017)
New Revision: 51013

Modified:
   data/CVE/list
Log:
Oracle NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-24 21:10:13 UTC (rev 51012)
+++ data/CVE/list	2017-04-24 21:16:59 UTC (rev 51013)
@@ -13115,7 +13115,7 @@
 CVE-2017-3626 (Vulnerability in the Oracle GlassFish Server component of Oracle ...)
 	TODO: check
 CVE-2017-3625 (Vulnerability in the Oracle WebCenter Content component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3624
 	RESERVED
 CVE-2017-3623 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
@@ -13125,45 +13125,45 @@
 CVE-2017-3621 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3620 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3619 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3618 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3617 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3616 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3615 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3614 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3613 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3612 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3611 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3610 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3609 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3608 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3607 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3606 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3605 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3604 (Vulnerability in the Data Store component of Oracle Berkeley DB. The ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3603 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3602 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3601 (Vulnerability in the Oracle API Gateway component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3600 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	- mysql-5.7 <unfixed> (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
@@ -13171,21 +13171,21 @@
 	- mysql-5.7 <unfixed> (bug #860547)
 	- mysql-5.5 <not-affected> (ONly affects MySQL 5.6 and 5.7)
 CVE-2017-3598 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3597 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3596 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3595 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3594 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3593 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3592 (Vulnerability in the Oracle Payables component of Oracle E-Business ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3591 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3590 (Vulnerability in the MySQL Connectors component of Oracle MySQL ...)
 	- mysql-connector-python <unfixed>
 CVE-2017-3589 (Vulnerability in the MySQL Connectors component of Oracle MySQL ...)
@@ -13203,19 +13203,19 @@
 CVE-2017-3584 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3583 (Vulnerability in the Primavera P6 Enterprise Project Portfolio ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3582 (Vulnerability in the Oracle SuperCluster Specific Software component ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3581 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3580 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3579 (Vulnerability in the Primavera P6 Enterprise Project Portfolio ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3578 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3577 (Vulnerability in the PeopleSoft Enterprise CS Campus Community ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3576 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...)
 	- virtualbox 5.1.20-dfsg-1
 	[jessie] - virtualbox <end-of-life> (DSA-3699-1)
@@ -13225,21 +13225,21 @@
 	[jessie] - virtualbox <end-of-life> (DSA-3699-1)
 	[wheezy] - virtualbox <end-of-life> (DSA 3454)
 CVE-2017-3574 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3573 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3572 (Vulnerability in the Oracle Commerce Guided Search / Oracle Commerce ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3571 (Vulnerability in the PeopleSoft Enterprise SCM eBill Payment component ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3570 (Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3569 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3568 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3567 (Vulnerability in the OJVM component of Oracle Database Server. ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3566
 	RESERVED
 CVE-2017-3565 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
@@ -13257,7 +13257,7 @@
 	[jessie] - virtualbox <end-of-life> (DSA-3699-1)
 	[wheezy] - virtualbox <end-of-life> (DSA 3454)
 CVE-2017-3560 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3559 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...)
 	- virtualbox 5.1.20-dfsg-1
 	[jessie] - virtualbox <end-of-life> (DSA-3699-1)
@@ -13267,44 +13267,44 @@
 	[jessie] - virtualbox <end-of-life> (DSA-3699-1)
 	[wheezy] - virtualbox <end-of-life> (DSA 3454)
 CVE-2017-3557 (Vulnerability in the Oracle One-to-One Fulfillment component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3556 (Vulnerability in the Oracle Application Object Library component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3555 (Vulnerability in the Oracle iReceivables component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3554 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3553 (Vulnerability in the Oracle Identity Manager component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3552 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3551 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3550 (Vulnerability in the Oracle Customer Interaction History component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3549 (Vulnerability in the Oracle Scripting component of Oracle E-Business ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3548 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3547 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3546 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3545 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3544 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
 	- openjdk-8 <unfixed>
 	- openjdk-7 <removed>
 	- openjdk-6 <removed>
 	[wheezy] - openjdk-6 <end-of-life>
 CVE-2017-3543 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3542 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3541 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3540 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3539 (Vulnerability in the Java SE, Java SE Embedded component of Oracle ...)
 	- openjdk-8 <unfixed>
 	- openjdk-7 <removed>
@@ -13315,57 +13315,57 @@
 	[jessie] - virtualbox <end-of-life> (DSA-3699-1)
 	[wheezy] - virtualbox <end-of-life> (DSA 3454)
 CVE-2017-3537 (Vulnerability in the Oracle Real-Time Scheduler component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3536 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3535 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3534 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3533 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
 	- openjdk-8 <unfixed>
 	- openjdk-7 <removed>
 	- openjdk-6 <removed>
 	[wheezy] - openjdk-6 <end-of-life>
 CVE-2017-3532 (Vulnerability in the Oracle Retail Warehouse Management System ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3531 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3530 (Vulnerability in the Oracle Transportation Manager component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3529
 	RESERVED
 CVE-2017-3528 (Vulnerability in the Oracle Applications Framework component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3527 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3526 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
 	- openjdk-8 <unfixed>
 	- openjdk-7 <removed>
 	- openjdk-6 <removed>
 	[wheezy] - openjdk-6 <end-of-life>
 CVE-2017-3525 (Vulnerability in the PeopleSoft Enterprise SCM Service Procurement ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3524 (Vulnerability in the PeopleSoft Enterprise SCM Strategic Sourcing ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3523 (Vulnerability in the MySQL Connectors component of Oracle MySQL ...)
 	TODO: check
 CVE-2017-3522 (Vulnerability in the PeopleSoft Enterprise SCM eSupplier Connection ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3521 (Vulnerability in the PeopleSoft Enterprise SCM Purchasing component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3520 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3519 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3518 (Vulnerability in the Enterprise Manager Base Platform component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3517 (Vulnerability in the JD Edwards EnterpriseOne Tools component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3516 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3515 (Vulnerability in the Oracle User Management component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3514 (Vulnerability in the Java SE component of Oracle Java SE ...)
 	- openjdk-8 <not-affected> (Windows builds only)
 	- openjdk-7 <not-affected> (Windows builds only)
@@ -13391,83 +13391,83 @@
 	- openjdk-6 <removed>
 	[wheezy] - openjdk-6 <end-of-life>
 CVE-2017-3508 (Vulnerability in the Primavera Gateway component of Oracle Primavera ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3507 (Vulnerability in the Oracle Service Bus component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3506 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3505 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3504 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3503 (Vulnerability in the Primavera P6 Enterprise Project Portfolio ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3502 (Vulnerability in the PeopleSoft Enterprise FIN Receivables component ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3501 (Vulnerability in the Primavera Unifier component of Oracle Primavera ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3500 (Vulnerability in the Primavera Gateway component of Oracle Primavera ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3499 (Vulnerability in the Oracle Social Network component of Oracle Fusion ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3498 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3497 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3496 (Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3495 (Vulnerability in the Oracle FLEXCUBE Direct Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3494 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3493 (Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3492 (Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3491 (Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3490 (Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3489 (Vulnerability in the Oracle FLEXCUBE Investor Servicing component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3488 (Vulnerability in the Oracle FLEXCUBE Investor Servicing component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3487 (Vulnerability in the Oracle FLEXCUBE Investor Servicing component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3486 (Vulnerability in the SQL*Plus component of Oracle Database Server. ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3485 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3484 (Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3483 (Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3482 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3481 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3480 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3479 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3478 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3477 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3476 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3475 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3474 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3473 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3472 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3471 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3470 (Vulnerability in the Oracle Communications Security Gateway component ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3469 (Vulnerability in the MySQL Workbench component of Oracle MySQL ...)
 	- mysql-workbench <unfixed>
 CVE-2017-3468 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
@@ -13521,7 +13521,7 @@
 	- mysql-5.7 <not-affected> (Only affects MySQL 5.6)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.6)
 CVE-2017-3451 (Vulnerability in the Oracle Retail Open Commerce Platform component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3450 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	- mysql-5.7 <unfixed> (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
@@ -13560,7 +13560,7 @@
 CVE-2017-3433 (Vulnerability in the Oracle One-to-One Fulfillment component of Oracle ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3432 (Vulnerability in the Oracle One-to-One Fulfillment component of Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3431 (Vulnerability in the Oracle One-to-One Fulfillment component of Oracle ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3430 (Vulnerability in the Oracle One-to-One Fulfillment component of Oracle ...)
@@ -13638,7 +13638,7 @@
 CVE-2017-3394 (Vulnerability in the Oracle Advanced Outbound Telephony component of ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3393 (Vulnerability in the Oracle Advanced Outbound Telephony component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3392 (Vulnerability in the Oracle Advanced Outbound Telephony component of ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3391 (Vulnerability in the Oracle Advanced Outbound Telephony component of ...)
@@ -13750,7 +13750,7 @@
 CVE-2017-3338 (Vulnerability in the Oracle Marketing component of Oracle E-Business ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3337 (Vulnerability in the Oracle Marketing component of Oracle E-Business ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3336 (Vulnerability in the Oracle Marketing component of Oracle E-Business ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3335 (Vulnerability in the Oracle Marketing component of Oracle E-Business ...)
@@ -13909,7 +13909,7 @@
 	[experimental] - openjdk-7 7u121-2.6.8-2
 	- openjdk-7 <removed>
 CVE-2017-3288 (Vulnerability in the Oracle FLEXCUBE Investor Servicing component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3287 (Vulnerability in the Oracle iStore component of Oracle E-Business ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3286 (Vulnerability in the Oracle Applications DBA component of Oracle ...)
@@ -14011,7 +14011,7 @@
 CVE-2017-3255 (Vulnerability in the Oracle JDeveloper component of Oracle Fusion ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3254 (Vulnerability in the Oracle Retail Invoice Matching component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3253 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
 	{DSA-3782-1 DLA-821-1}
 	- openjdk-8 8u121-b13-1
@@ -14077,17 +14077,17 @@
 	- mysql-5.6 5.6.35-1 (bug #851234)
 	- mysql-5.5 <removed> (bug #851233)
 CVE-2017-3237 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3236 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
 	NOT-FOR-US: Oracle FLEXCUBE
 CVE-2017-3235 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
 	NOT-FOR-US: Oracle FLEXCUBE
 CVE-2017-3234 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3233 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3232 (Vulnerability in the Automatic Service Request (ASR) component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2017-3231 (Vulnerability in the Java SE, Java SE Embedded component of Oracle ...)
 	{DSA-3782-1 DLA-821-1}
 	- openjdk-8 8u121-b13-1
@@ -14096,7 +14096,7 @@
 	- openjdk-6 <removed>
 	[wheezy] - openjdk-6 <end-of-life>
 CVE-2017-3230 (Vulnerability in the Oracle Fusion Middleware MapViewer component of ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2016-9892 (The esets_daemon service in ESET Endpoint Antivirus for macOS before ...)
 	NOT-FOR-US: ESET
 CVE-2016-9891 (Cross-site scripting (XSS) vulnerability in admin/media.php and ...)




More information about the Secure-testing-commits mailing list