[Secure-testing-commits] r51125 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Apr 27 21:18:08 UTC 2017 

Author: jmm
Date: 2017-04-27 21:18:08 +0000 (Thu, 27 Apr 2017)
New Revision: 51125

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-27 21:15:43 UTC (rev 51124)
+++ data/CVE/list	2017-04-27 21:18:08 UTC (rev 51125)
@@ -33,7 +33,7 @@
 CVE-2017-8290
 	RESERVED
 CVE-2017-8289 (Stack-based buffer overflow in the ipv6_addr_from_str function in ...)
-	TODO: check
+	NOT-FOR-US: RIOS OS
 CVE-2017-8288 (gnome-shell 3.22 through 3.24.1 mishandles extensions that fail to ...)
 	TODO: check
 CVE-2017-8305 [Buffer overflow in own strlcpy implementation]
@@ -2366,7 +2366,7 @@
 CVE-2017-7416
 	RESERVED
 CVE-2017-7415 (Atlassian Confluence 6.x before 6.0.7 allows remote attackers to bypass ...)
-	TODO: check
+	NOT-FOR-US: Atlassian Confluence
 CVE-2016-10318 (A missing authorization check in the fscrypt_process_policy function in ...)
 	- linux 4.7.4-1
 	[jessie] - linux <not-affected> (Vulnerable code not present)
@@ -6298,11 +6298,11 @@
 CVE-2017-6038
 	RESERVED
 CVE-2017-6037 (A Heap-Based Buffer Overflow issue was discovered in Wecon Technologies ...)
-	TODO: check
+	NOT-FOR-US: Wecon
 CVE-2017-6036
 	RESERVED
 CVE-2017-6035 (A Stack-Based Buffer Overflow issue was discovered in Wecon ...)
-	TODO: check
+	NOT-FOR-US: Wecon
 CVE-2017-6034
 	RESERVED
 CVE-2017-6033 (A DLL Hijacking issue was discovered in Schneider Electric Interactive ...)
@@ -9440,7 +9440,7 @@
 CVE-2017-5187
 	RESERVED
 CVE-2017-5186 (Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before ...)
-	TODO: check
+	NOT-FOR-US: Novell iManager
 CVE-2017-5185 (A vulnerability was discovered in NetIQ Sentinel Server 8.0 before ...)
 	NOT-FOR-US: NetIQ Sentinel
 CVE-2017-5184 (A vulnerability was discovered in NetIQ Sentinel Server 8.0 before ...)
@@ -9624,7 +9624,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2017/01/04/1
 	NOTE: https://github.com/netblue30/firejail/issues/1020
 CVE-2017-5135 (Certain Technicolor devices have an SNMP access-control bypass, ...)
-	TODO: check
+	NOT-FOR-US: Technicolor
 CVE-2017-5134
 	RESERVED
 CVE-2017-5133
@@ -15078,7 +15078,7 @@
 CVE-2017-3067
 	RESERVED
 CVE-2017-3066 (Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2017-3065 (Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and ...)
 	NOT-FOR-US: Adobe Acrobat Reader
 CVE-2017-3064 (Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable ...)
@@ -15194,7 +15194,7 @@
 CVE-2017-3009 (Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 ...)
 	NOT-FOR-US: Adobe
 CVE-2017-3008 (Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2017-3007 (Adobe Thor versions 3.9.5.353 and earlier have a vulnerability in the ...)
 	NOT-FOR-US: Adobe Thor
 CVE-2017-3006 (Adobe Thor versions 3.9.5.353 and earlier have a vulnerability related ...)

More information about the Secure-testing-commits mailing list