[Secure-testing-commits] r55280 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Aug 31 03:20:55 UTC 2017 

Author: carnil
Date: 2017-08-31 03:20:55 +0000 (Thu, 31 Aug 2017)
New Revision: 55280

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-31 03:20:34 UTC (rev 55279)
+++ data/CVE/list	2017-08-31 03:20:55 UTC (rev 55280)
@@ -3500,7 +3500,7 @@
 CVE-2017-12764
 	RESERVED
 CVE-2017-12763 (An unspecified server utility in NoMachine before 5.3.10 on Mac OS X ...)
-	TODO: check
+	NOT-FOR-US: NoMachine
 CVE-2017-12762 (In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is copied ...)
 	- linux <unfixed> (unimportant)
 	NOTE: Fixed by: https://git.kernel.org/linus/9f5af546e6acc30f075828cb58c7f09665033967 (v4.13-rc4)
@@ -5125,7 +5125,7 @@
 CVE-2017-12070
 	RESERVED
 CVE-2017-12069 (An XXE vulnerability has been identified in OPC Foundation UA .NET ...)
-	TODO: check
+	NOT-FOR-US: OPC Foundation UA .NET Sampe code and Local Discovery Server affecting various vendors
 CVE-2017-12068 (The Event List plugin 0.7.9 for WordPress has XSS in the slug array ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2017-12067 (Potrace 1.14 has a heap-based buffer over-read in the interpolate_cubic ...)
@@ -71323,7 +71323,7 @@
 CVE-2015-8300 (Polycom BToE Connector before 3.0.0 uses weak permissions (Everyone: ...)
 	NOT-FOR-US: Polycom BToE Connector
 CVE-2015-8299 (Buffer overflow in the Group messages monitor (Falcon) in KNX ETS ...)
-	TODO: check
+	NOT-FOR-US: Falcon
 CVE-2015-8298
 	RESERVED
 CVE-2015-8297
@@ -81507,7 +81507,7 @@
 CVE-2015-4701
 	RESERVED
 CVE-2015-4699 (Cross-site scripting (XSS) vulnerability in the Splash Portal in ...)
-	TODO: check
+	NOT-FOR-US: Cloud4Wi
 CVE-2015-4698
 	RESERVED
 CVE-2015-4697
@@ -89374,13 +89374,13 @@
 CVE-2014-9686
 	RESERVED
 CVE-2013-7433 (Cross-site scripting (XSS) vulnerability in the Googlemaps plugin ...)
-	TODO: check
+	NOT-FOR-US: Googlemaps plugin for Joomla!
 CVE-2013-7432 (The Googlemaps plugin before 3.1 for Joomla! allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Googlemaps plugin for Joomla!
 CVE-2013-7431 (Full path disclosure in the Googlemaps plugin before 3.1 for Joomla!. ...)
-	TODO: check
+	NOT-FOR-US: Googlemaps plugin for Joomla!
 CVE-2013-7430 (Cross-site scripting (XSS) vulnerability in the Googlemaps plugin ...)
-	TODO: check
+	NOT-FOR-US: Googlemaps plugin for Joomla!
 CVE-2013-7429
 	RESERVED
 CVE-2013-7428
@@ -106807,9 +106807,9 @@
 CVE-2014-5303
 	RESERVED
 CVE-2014-5302 (Directory traversal vulnerability in ServiceDesk Plus and Plus MSP v5 ...)
-	TODO: check
+	NOT-FOR-US: ManageEngine components
 CVE-2014-5301 (Directory traversal vulnerability in ServiceDesk Plus MSP v5 to v9.0 ...)
-	TODO: check
+	NOT-FOR-US: ManageEngine components
 CVE-2014-5300 (Adaptive Computing Moab before 7.2.9 and 8 before 8.0.0 allows remote ...)
 	NOT-FOR-US: Adaptive Computing Moab
 CVE-2014-5299

More information about the Secure-testing-commits mailing list