[Secure-testing-commits] r55181 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Aug 29 07:44:20 UTC 2017 

Author: carnil
Date: 2017-08-29 07:44:19 +0000 (Tue, 29 Aug 2017)
New Revision: 55181

Modified:
   data/CVE/list
Log:
More NFUs processed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-29 07:36:00 UTC (rev 55180)
+++ data/CVE/list	2017-08-29 07:44:19 UTC (rev 55181)
@@ -7873,11 +7873,11 @@
 CVE-2017-10829
 	RESERVED
 CVE-2017-10828 (Untrusted search path vulnerability in Flets Install Tool all versions ...)
-	TODO: check
+	NOT-FOR-US: Flets Install Tool
 CVE-2017-10827 (Untrusted search path vulnerability in Flets Azukeru for Windows Auto ...)
-	TODO: check
+	NOT-FOR-US: Flets Azukeru for Windows Auto Backup Tool
 CVE-2017-10826 (Untrusted search path vulnerability in Security Kinou Mihariban ...)
-	TODO: check
+	NOT-FOR-US: Security Kinou Mihariban
 CVE-2017-10825
 	RESERVED
 CVE-2017-10824 (Untrusted search path vulnerability in TDB CA TypeA use software ...)
@@ -7905,7 +7905,7 @@
 CVE-2017-10813
 	RESERVED
 CVE-2017-10812 (Untrusted search path vulnerability in Photo Collection PC Software ...)
-	TODO: check
+	NOT-FOR-US: Photo Collection PC Software
 CVE-2017-10811 (Buffalo WCR-1166DS devices with firmware 1.30 and earlier allow an ...)
 	NOT-FOR-US: Buffalo WCR-1166DS devices
 CVE-2017-10810 (Memory leak in the virtio_gpu_object_create function in ...)
@@ -36167,7 +36167,7 @@
 CVE-2016-9733 (IBM Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2016-9732 (IBM Curam Social Program Management 6.0, 6.1, 6.2 and 7.0 is ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-9731 (IBM Business Process Manager is vulnerable to cross-site scripting. ...)
 	NOT-FOR-US: IBM
 CVE-2016-9730 (IBM QRadar Incident Forensics 7.2 is vulnerable to cross-site request ...)
@@ -59546,7 +59546,7 @@
 CVE-2016-2971
 	RESERVED
 CVE-2016-2970 (IBM Sametime 8.5 and 9.0 meetings server may provide detailed ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-2969
 	RESERVED
 CVE-2016-2968 (IBM Security QRadar Incident Forensics 7.2.x before 7.2.7 allows ...)
@@ -92251,7 +92251,7 @@
 CVE-2015-0975
 	RESERVED
 CVE-2015-0974 (Untrusted search path vulnerability in ZTE Datacard MF19 0V1.0.0B04 ...)
-	TODO: check
+	NOT-FOR-US: ZTE Datacard MF19
 CVE-2015-0972 (Pearson ProctorCache before 2015.1.17 uses the same hardcoded password ...)
 	NOT-FOR-US: Pearson ProctorCache
 CVE-2015-0971 (The DER parser in Suricata before 2.0.8 allows remote attackers to ...)
@@ -93612,9 +93612,9 @@
 CVE-2014-9559 (Cross-site scripting (XSS) vulnerability in SnipSnap 0.5.2a, 1.0b1, ...)
 	NOT-FOR-US: SnipSnap
 CVE-2014-9558 (Multiple SQL injection vulnerabilities in SmartCMS v.2. ...)
-	TODO: check
+	NOT-FOR-US: SmartCMS
 CVE-2014-9557 (Multiple cross-site scripting (XSS) vulnerabilities in SmartCMS v.2. ...)
-	TODO: check
+	NOT-FOR-US: SmartCMS
 CVE-2014-9555
 	RESERVED
 CVE-2014-9554
@@ -96696,7 +96696,7 @@
 CVE-2015-0115 (Cross-site request forgery (CSRF) vulnerability in IBM Leads 7.x, ...)
 	NOT-FOR-US: IBM
 CVE-2015-0114 (Stack-based buffer overflow in IBM V5R4, and IBM i Access for Windows ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2015-0113 (The Jazz help system in IBM Rational Collaborative Lifecycle ...)
 	NOT-FOR-US: IBM Rational Collaborative Lifecycle Management
 CVE-2015-0112 (Jazz Team Server in Jazz Foundation in IBM Rational Collaborative ...)
@@ -96722,7 +96722,7 @@
 CVE-2015-0102
 	RESERVED
 CVE-2015-0101 (Cross-site scripting (XSS) vulnerability in IBM Business Process ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2015-0100 (Microsoft Internet Explorer 8 allows remote attackers to execute ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2015-0099 (Microsoft Internet Explorer 10 allows remote attackers to execute ...)
@@ -97128,7 +97128,7 @@
 CVE-2014-8901 (IBM DB2 9.5 through FP10, 9.7 through FP10, 9.8 through FP5, 10.1 ...)
 	NOT-FOR-US: IBM
 CVE-2014-8900 (Cross-site request forgery (CSRF) vulnerability in IBM UrbanCode ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2014-8899 (Cross-site scripting (XSS) vulnerability in the Collaboration Server ...)
 	NOT-FOR-US: IBM
 CVE-2014-8898 (Cross-site scripting (XSS) vulnerability in the Collaboration Server ...)
@@ -97190,9 +97190,9 @@
 	NOTE: files end up in /etc/mailcap, which introduces the user-initiated
 	NOTE: code execution.
 CVE-2014-8872 (Improper Verification of Cryptographic Signature in AVM FRITZ!Box 6810 ...)
-	TODO: check
+	NOT-FOR-US: AVM FRITZ!Box
 CVE-2014-8871 (Directory traversal vulnerability in hybris Commerce software suite ...)
-	TODO: check
+	NOT-FOR-US: hybris Commerce
 CVE-2014-8870 (Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the ...)
 	NOT-FOR-US: Woltlab Burning Board plugin Tapatalk
 CVE-2014-8869 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
@@ -98473,7 +98473,7 @@
 CVE-2014-8394 (Multiple untrusted search path vulnerabilities in Corel CAD 2014 allow ...)
 	NOT-FOR-US: Corel CAD
 CVE-2014-8393 (DLL Hijacking vulnerability in CorelDRAW X7, Corel Photo-Paint X7, ...)
-	TODO: check
+	NOT-FOR-US: Corel
 CVE-2014-8392
 	RESERVED
 CVE-2014-8391 (The Web interface in Sendio before 7.2.4 does not properly handle ...)
@@ -107028,7 +107028,7 @@
 CVE-2014-4926
 	RESERVED
 CVE-2014-4925 (Cross-site scripting (XSS) vulnerability in Good for Enterprise for ...)
-	TODO: check
+	NOT-FOR-US: Good for Enterprise for Android
 CVE-2014-4924
 	RESERVED
 CVE-2014-4923

More information about the Secure-testing-commits mailing list