[Secure-testing-commits] r54484 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Aug 9 13:43:48 UTC 2017 

Author: carnil
Date: 2017-08-09 13:43:48 +0000 (Wed, 09 Aug 2017)
New Revision: 54484

Modified:
   data/CVE/list
Log:
Process various NFUs

Rebased/merged with jmm's commit

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-09 13:40:08 UTC (rev 54483)
+++ data/CVE/list	2017-08-09 13:43:48 UTC (rev 54484)
@@ -3830,15 +3830,15 @@
 CVE-2017-11156
 	RESERVED
 CVE-2017-11155 (An information exposure vulnerability in index.php in Synology Photo ...)
-	NOT-FOR-US: Synology
+	NOT-FOR-US: Synology Photo Station
 CVE-2017-11154 (Unrestricted file upload vulnerability in PixlrEditorHandler.php in ...)
-	TODO: check
+	NOT-FOR-US: Synology Photo Station
 CVE-2017-11153 (Deserialization vulnerability in synophoto_csPhotoMisc.php in Synology ...)
-	NOT-FOR-US: Synology
+	NOT-FOR-US: Synology Photo Station
 CVE-2017-11152 (Directory traversal vulnerability in PixlrEditorHandler.php in ...)
-	TODO: check
+	NOT-FOR-US: Synology Photo Station
 CVE-2017-11151 (A vulnerability in synotheme_upload.php in Synology Photo Station ...)
-	NOT-FOR-US: Synology
+	NOT-FOR-US: Synology Photo Station
 CVE-2017-11150
 	RESERVED
 CVE-2017-11149
@@ -26287,7 +26287,7 @@
 	- mysql-5.7 <unfixed> (bug #868798)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
 CVE-2017-3632 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
-	NOT-FOR-US: Oracle
+	NOT-FOR-US: Oracle Solaris
 CVE-2017-3631 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
 	NOT-FOR-US: Solaris
 CVE-2017-3630 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
@@ -39380,7 +39380,7 @@
 CVE-2017-0294 (Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows ...)
 	NOT-FOR-US: Microsoft
 CVE-2017-0293 (Microsoft Windows PDF Library in Windows Server 2008 R2 SP1, Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2017-0292 (Windows PDF in Windows 8.1, Windows Server 2012 Gold and R2, Windows ...)
 	NOT-FOR-US: Microsoft
 CVE-2017-0291 (Windows PDF in Windows 8.1, Windows Server 2012 Gold and R2, Windows ...)
@@ -39466,7 +39466,7 @@
 CVE-2017-0251
 	RESERVED
 CVE-2017-0250 (Microsoft JET Database Engine in Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2017-0249 (An elevation of privilege vulnerability exists when the ASP.NET Core ...)
 	NOT-FOR-US: Microsoft
 CVE-2017-0248 (Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and ...)
@@ -39618,7 +39618,7 @@
 CVE-2017-0175 (The Windows kernel in Windows Server 2008 SP2 and R2 SP1, and Windows ...)
 	NOT-FOR-US: Microsoft
 CVE-2017-0174 (Windows NetBIOS in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2017-0173 (Microsoft Windows 10 1607 and Windows Server 2016 allow an attacker to ...)
 	NOT-FOR-US: Microsoft
 CVE-2017-0172

More information about the Secure-testing-commits mailing list