[Secure-testing-commits] r58685 - data/CVE

Raphael Geissert geissert at moszumanska.debian.org
Tue Dec 19 07:25:28 UTC 2017 

Author: geissert
Date: 2017-12-19 07:25:28 +0000 (Tue, 19 Dec 2017)
New Revision: 58685

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-18 21:37:16 UTC (rev 58684)
+++ data/CVE/list	2017-12-19 07:25:28 UTC (rev 58685)
@@ -30,7 +30,7 @@
 CVE-2017-17734 (CMS Made Simple (CMSMS) before 2.2.5 does not properly cache login ...)
 	NOT-FOR-US: CMS Made Simple (CMSMS)
 CVE-2017-17733 (Maccms 8.x allows remote command execution via the wd parameter in an ...)
-	TODO: check
+	NOT-FOR-US: Maccms
 CVE-2017-17732
 	RESERVED
 CVE-2017-17731 (DedeCMS through 5.7 has SQL Injection via the $_FILES superglobal to ...)
@@ -54,7 +54,7 @@
 CVE-2017-17722
 	RESERVED
 CVE-2017-17721 (CWEBNET/WOSummary/List in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 ...)
-	TODO: check
+	NOT-FOR-US: ZUUSE BEIMS ContractorWeb .NET
 CVE-2017-17720
 	RESERVED
 CVE-2017-17719
@@ -2498,11 +2498,11 @@
 CVE-2018-2360
 	RESERVED
 CVE-2017-17701 (K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer ...)
-	TODO: check
+	NOT-FOR-US: K7 Antivirus
 CVE-2017-17700 (K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer ...)
-	TODO: check
+	NOT-FOR-US: K7 Antivirus
 CVE-2017-17699 (K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer ...)
-	TODO: check
+	NOT-FOR-US: K7 Antivirus
 CVE-2017-17698 (Zoho ManageEngine Password Manager Pro 9 before 9.4 (9400) has ...)
 	TODO: check
 CVE-2017-17697 (The Ping() function in ui/api/target.go in Harbor through 1.3.0-rc4 has ...)
@@ -51144,11 +51144,11 @@
 CVE-2017-3197
 	RESERVED
 CVE-2017-3196 (PCAUSA Rawether framework does not properly validate BPF data, ...)
-	TODO: check
+	NOT-FOR-US: PCAUSA Rawether
 CVE-2017-3195 (Commvault Edge Communication Service (cvd) prior to version 11 SP7 or ...)
-	TODO: check
+	NOT-FOR-US: Commvault Edge Communication Service
 CVE-2017-3194 (Pandora iOS app prior to version 8.3.2 fails to properly validate SSL ...)
-	TODO: check
+	NOT-FOR-US: Pandora iOS app
 CVE-2017-3193 (Multiple D-Link devices including the DIR-850L firmware versions ...)
 	NOT-FOR-US: D-Link
 CVE-2017-3192 (D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 ...)
@@ -51164,11 +51164,11 @@
 CVE-2017-3187
 	RESERVED
 CVE-2017-3186 (ACTi cameras including the D, B, I, and E series using firmware ...)
-	TODO: check
+	NOT-FOR-US: ACTi cameras
 CVE-2017-3185 (ACTi cameras including the D, B, I, and E series using firmware ...)
-	TODO: check
+	NOT-FOR-US: ACTi cameras
 CVE-2017-3184 (ACTi cameras including the D, B, I, and E series using firmware ...)
-	TODO: check
+	NOT-FOR-US: ACTi cameras
 CVE-2017-3183
 	RESERVED
 CVE-2017-3182
@@ -52119,7 +52119,7 @@
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0394
 	NOTE: https://hg.libsdl.org/SDL_image/rev/318484db0705
 CVE-2017-2886 (A memory corruption vulnerability exists in the .PSD parsing ...)
-	TODO: check
+	NOT-FOR-US: ACDSee Ultimate
 CVE-2017-2885 [stack based buffer overflow with HTTP Chunked Encoding]
 	RESERVED
 	{DSA-3929-1}

More information about the Secure-testing-commits mailing list