[Secure-testing-commits] r54492 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2017-08-09 21:19:00 +0000 (Wed, 09 Aug 2017)
New Revision: 54492

Modified:
   data/CVE/list
Log:
puppet n/a
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-09 21:11:11 UTC (rev 54491)
+++ data/CVE/list	2017-08-09 21:19:00 UTC (rev 54492)
@@ -3036,7 +3036,7 @@
 CVE-2017-11507
 	RESERVED
 CVE-2017-11506 (When linking a Nessus scanner or agent to Tenable.io or other manager, ...)
-	TODO: check
+	NOT-FOR-US: Nessus
 CVE-2017-11565 (debian/tor.init in the Debian tor_0.2.9.11-1~deb9u1 package for Tor was ...)
 	- tor <unfixed> (bug #869153)
 	[stretch] - tor <no-dsa> (Minor issue)
@@ -8806,7 +8806,7 @@
 CVE-2017-9371
 	RESERVED
 CVE-2017-9370 (An information disclosure / elevation of privilege vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: BlackBerry
 CVE-2017-9369
 	RESERVED
 CVE-2017-9368
@@ -19944,9 +19944,9 @@
 CVE-2017-5696
 	RESERVED
 CVE-2017-5695 (Data corruption vulnerability in firmware in Intel Solid-State Drive ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2017-5694 (Data corruption vulnerability in firmware in Intel Solid-State Drive ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2017-5693
 	RESERVED
 CVE-2017-5692
@@ -31879,7 +31879,7 @@
 CVE-2017-1449
 	RESERVED
 CVE-2017-1448 (IBM Emptoris Supplier Lifecycle Management 10.0.x and 10.1.x could ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1447
 	RESERVED
 CVE-2017-1446
@@ -32061,7 +32061,7 @@
 CVE-2017-1358
 	RESERVED
 CVE-2017-1357 (IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1356
 	RESERVED
 CVE-2017-1355
@@ -37188,7 +37188,7 @@
 CVE-2016-8950 (IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2016-8949 (IBM Emptoris Supplier Lifecycle Management 10.0.x and 10.1.x could ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-8948 (IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2016-8947 (IBM Emptoris Sourcing 9.5.x through 10.1.x could allow a remote ...)
@@ -47798,7 +47798,7 @@
 CVE-2016-5717
 	RESERVED
 CVE-2016-5716 (The console in Puppet Enterprise 2015.x and 2016.x prior to 2016.4.0 ...)
-	TODO: check
+	- puppet <not-affected> (Limited to Puppet Enterprise)
 CVE-2016-5715 (Open redirect vulnerability in the Console in Puppet Enterprise 2015.x ...)
 	- puppet <not-affected> (Limited to Puppet Enterprise)
 CVE-2016-5714
@@ -68539,7 +68539,7 @@
 CVE-2015-7895 (Samsung Gallery on the Samsung Galaxy S6 allows local users to cause a ...)
 	NOT-FOR-US: Samsung
 CVE-2015-7894 (The DCMProvider service in Samsung LibQjpeg on a Samsung SM-G925V ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2015-7893 (SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email content, ...)
 	NOT-FOR-US: Samsung
 CVE-2015-7892