[Secure-testing-commits] r54932 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Aug 21 09:14:07 UTC 2017
Author: carnil
Date: 2017-08-21 09:14:06 +0000 (Mon, 21 Aug 2017)
New Revision: 54932
Modified:
data/CVE/list
Log:
Process two NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-21 09:13:10 UTC (rev 54931)
+++ data/CVE/list 2017-08-21 09:14:06 UTC (rev 54932)
@@ -1,10 +1,10 @@
CVE-2017-12984 (PHPMyWind 5.3 has XSS in shoppingcart.php, related to message.php, ...)
- TODO: check
+ NOT-FOR-US: PHPMyWind
CVE-2017-12983 (Heap-based buffer overflow in the ReadSFWImage function in coders/sfw.c ...)
- imagemagick <unfixed>
NOTE: https://github.com/ImageMagick/ImageMagick/issues/682
CVE-2017-12981 (NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via ...)
- TODO: check
+ NOT-FOR-US: NexusPHP
CVE-2017-12980 (DokuWiki through 2017-02-19c has stored XSS when rendering a malicious ...)
TODO: check
CVE-2017-12979 (DokuWiki through 2017-02-19c has stored XSS when rendering a malicious ...)
More information about the Secure-testing-commits
mailing list