[Secure-testing-commits] r55052 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Aug 25 06:59:56 UTC 2017
Author: jmm
Date: 2017-08-25 06:59:56 +0000 (Fri, 25 Aug 2017)
New Revision: 55052
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-25 06:28:51 UTC (rev 55051)
+++ data/CVE/list 2017-08-25 06:59:56 UTC (rev 55052)
@@ -27,11 +27,11 @@
CVE-2017-13672
RESERVED
CVE-2017-13671 (app/View/Helper/CommandHelper.php in MISP before 2.4.79 has persistent ...)
- TODO: check
+ NOT-FOR-US: MISP (Malware Information Sharing Platform and Threat Sharing)
CVE-2017-13670
RESERVED
CVE-2017-13669 (SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the setanswered ...)
- TODO: check
+ NOT-FOR-US: NexusPHP
CVE-2017-13668
RESERVED
CVE-2017-13667
@@ -1758,7 +1758,7 @@
CVE-2017-12880
REJECTED
CVE-2017-12879 (Cross-site scripting (XSS-STORED) vulnerability in the DEVICES OR ...)
- TODO: check
+ NOT-FOR-US: Paessler PRTG Network Monitor
CVE-2017-12878
RESERVED
CVE-2016-10502
@@ -2773,7 +2773,7 @@
CVE-2017-12680 (Cross-Site Scripting (XSS) exists in NexusPHP 1.5 via the type ...)
NOT-FOR-US: NexusPHP
CVE-2017-12679 (SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the delcheater ...)
- TODO: check
+ NOT-FOR-US: NexusPHP
CVE-2017-12678 (In TagLib 1.11.1, the rebuildAggregateFrames function in ...)
- taglib <unfixed> (bug #871511)
[stretch] - taglib <no-dsa> (Minor issue)
@@ -4198,7 +4198,7 @@
CVE-2017-12075
RESERVED
CVE-2017-12074 (Directory traversal vulnerability in the ...)
- TODO: check
+ NOT-FOR-US: Synology
CVE-2017-12073
RESERVED
CVE-2017-12072
@@ -11007,7 +11007,7 @@
CVE-2017-9556 (Cross-site scripting (XSS) vulnerability in Video Metadata Editor in ...)
NOT-FOR-US: Synology Video Station
CVE-2017-9555 (Cross-site scripting (XSS) vulnerability in PixlrEditorHandler.php in ...)
- TODO: check
+ NOT-FOR-US: Synology Photo Station
CVE-2017-9554 (An information exposure vulnerability in forget_passwd.cgi in Synology ...)
NOT-FOR-US: Synology DiskStation Manager
CVE-2017-9553 (A design flaw in SYNO.API.Encryption in Synology DiskStation Manager ...)
@@ -11136,17 +11136,17 @@
CVE-2017-9513
RESERVED
CVE-2017-9512 (The mostActiveCommitters.do resource in Atlassian FishEye and ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2017-9511 (The MultiPathResource class in Atlassian FishEye and Crucible, before ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2017-9510 (The repository changelog resource in Atlassian FishEye before version ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2017-9509 (The review file upload resource in Atlassian Crucible before version ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2017-9508 (Various resources in Atlassian FishEye and Crucible before version ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2017-9507 (The review dashboard resource in Atlassian Crucible from version 4.1.0 ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2017-9506 (The IconUriServlet of the Atlassian OAuth Plugin from version 1.3.0 ...)
NOT-FOR-US: Atlassian
CVE-2017-9505 (Atlassian Confluence starting with 4.3.0 before 6.2.1 did not check if ...)
More information about the Secure-testing-commits
mailing list