[Secure-testing-commits] r58779 - data/CVE

Raphael Geissert geissert at moszumanska.debian.org
Thu Dec 21 12:08:57 UTC 2017 

Author: geissert
Date: 2017-12-21 12:08:57 +0000 (Thu, 21 Dec 2017)
New Revision: 58779

Modified:
   data/CVE/list
Log:
auto NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-21 12:01:22 UTC (rev 58778)
+++ data/CVE/list	2017-12-21 12:08:57 UTC (rev 58779)
@@ -10431,15 +10431,15 @@
 CVE-2017-16683 (Denial of Service (DOS) in SAP Business Objects Platform, Enterprise ...)
 	NOT-FOR-US: SAP Business Objects Platform
 CVE-2017-16682 (SAP NetWeaver Internet Transaction Server (ITS), SAP Basis from 7.00 ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver Internet Transaction Server 
 CVE-2017-16681 (Cross-Site Scripting (XSS) vulnerability in SAP Business Intelligence ...)
-	TODO: check
+	NOT-FOR-US: SAP Business Intelligence Promotion Management Application
 CVE-2017-16680 (Two potential audit log injections in SAP HANA extended application ...)
-	TODO: check
+	NOT-FOR-US: SAP HANA extended application services 
 CVE-2017-16679 (URL redirection vulnerability in SAP's Startup Service, SAP KERNEL 32 ...)
-	TODO: check
+	NOT-FOR-US: SAP's Startup Service
 CVE-2017-16678 (Server Side Request Forgery (SSRF) vulnerability in SAP NetWeaver ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver Knowledge Management Configuration Service
 CVE-2017-16677
 	RESERVED
 CVE-2017-16676
@@ -55131,13 +55131,13 @@
 CVE-2017-1761
 	RESERVED
 CVE-2017-1760 (IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow a local user to crash ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere MQ 
 CVE-2017-1759
 	RESERVED
 CVE-2017-1758
 	RESERVED
 CVE-2017-1757 (IBM Security Guardium 10.0 is vulnerable to SQL injection. A remote ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1756
 	RESERVED
 CVE-2017-1755
@@ -55149,7 +55149,7 @@
 CVE-2017-1752
 	RESERVED
 CVE-2017-1751 (IBM Robotic Process Automation with Automation Anywhere 10.0.0 is ...)
-	TODO: check
+	NOT-FOR-US: IBM Robotic Process Automation with Automation Anywhere 
 CVE-2017-1750
 	RESERVED
 CVE-2017-1749
@@ -55159,7 +55159,7 @@
 CVE-2017-1747
 	RESERVED
 CVE-2017-1746 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is ...)
-	TODO: check
+	NOT-FOR-US: IBM Jazz for Service Management 
 CVE-2017-1745
 	RESERVED
 CVE-2017-1744
@@ -55219,7 +55219,7 @@
 CVE-2017-1717
 	RESERVED
 CVE-2017-1716 (IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could disclose ...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli Workload Scheduler 
 CVE-2017-1715
 	RESERVED
 CVE-2017-1714
@@ -55259,11 +55259,11 @@
 CVE-2017-1697
 	RESERVED
 CVE-2017-1696 (IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to ...)
-	TODO: check
+	NOT-FOR-US: IBM QRadar 
 CVE-2017-1695
 	RESERVED
 CVE-2017-1694 (IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain ...)
-	TODO: check
+	NOT-FOR-US: IBM Integration Bus 
 CVE-2017-1693
 	RESERVED
 CVE-2017-1692
@@ -55285,7 +55285,7 @@
 CVE-2017-1684
 	RESERVED
 CVE-2017-1683 (IBM Connections Engagement Center 6.0 is vulnerable to cross-site ...)
-	TODO: check
+	NOT-FOR-US: IBM Connections Engagement Center 
 CVE-2017-1682
 	RESERVED
 CVE-2017-1681
@@ -55381,15 +55381,15 @@
 CVE-2017-1636
 	RESERVED
 CVE-2017-1635 (IBM Tivoli Monitoring V6 6.2.2.x could allow a remote attacker to ...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli Monitoring
 CVE-2017-1634
 	RESERVED
 CVE-2017-1633
 	RESERVED
 CVE-2017-1632 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. ...)
-	TODO: check
+	NOT-FOR-US: IBM Sterling File Gateway 
 CVE-2017-1631 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is ...)
-	TODO: check
+	NOT-FOR-US: IBM Jazz for Service Management 
 CVE-2017-1630
 	RESERVED
 CVE-2017-1629
@@ -55425,7 +55425,7 @@
 CVE-2017-1614
 	RESERVED
 CVE-2017-1613 (IBM Connections 6.0 could allow an unauthenticated remote attacker to ...)
-	TODO: check
+	NOT-FOR-US: IBM Connections 
 CVE-2017-1612
 	RESERVED
 CVE-2017-1611
@@ -55439,7 +55439,7 @@
 CVE-2017-1607 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2017-1606 (IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) ...)
-	TODO: check
+	NOT-FOR-US: IBM Financial Transaction Manager 
 CVE-2017-1605
 	RESERVED
 CVE-2017-1604
@@ -55451,17 +55451,17 @@
 CVE-2017-1601
 	RESERVED
 CVE-2017-1600 (IBM Security Guardium 10.0 Database Activity Monitor is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1599
 	RESERVED
 CVE-2017-1598 (IBM Security Guardium 10.0 Database Activity Monitor uses weaker than ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1597
 	RESERVED
 CVE-2017-1596 (IBM Security Guardium 10.0 Database Activity Monitor could allow a ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1595 (IBM Security Guardium 10.0 Database Activity Monitor could allow a ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1594
 	RESERVED
 CVE-2017-1593 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is vulnerable to ...)
@@ -55535,7 +55535,7 @@
 CVE-2017-1559
 	RESERVED
 CVE-2017-1558 (IBM Maximo Asset Management 7.5 and 7.6 could allow a remote attacker ...)
-	TODO: check
+	NOT-FOR-US: IBM Maximo Asset Management 
 CVE-2017-1557
 	RESERVED
 CVE-2017-1556 (IBM API Connect 5.0.7.0 through 5.0.7.2 is vulnerable to a regular ...)
@@ -55551,15 +55551,15 @@
 CVE-2017-1551 (IBM API Connect 5.0.0.0 through 5.0.7.2 could allow a remote attacker ...)
 	NOT-FOR-US: IBM
 CVE-2017-1550 (IBM Sterling File Gateway 2.2 could allow an authenticated user to ...)
-	TODO: check
+	NOT-FOR-US: IBM Sterling File Gateway 
 CVE-2017-1549 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. ...)
-	TODO: check
+	NOT-FOR-US: IBM Sterling File Gateway 
 CVE-2017-1548 (IBM Sterling File Gateway 2.2 could allow a remote attacker to ...)
-	TODO: check
+	NOT-FOR-US: IBM Sterling File Gateway 
 CVE-2017-1547
 	RESERVED
 CVE-2017-1546 (IBM DOORS Next Generation (DNG/RRC) 4.07, 5.0, and 6.0 is vulnerable ...)
-	TODO: check
+	NOT-FOR-US: IBM DOORS Next Generation 
 CVE-2017-1545
 	RESERVED
 CVE-2017-1544
@@ -55579,7 +55579,7 @@
 CVE-2017-1537
 	RESERVED
 CVE-2017-1536 (IBM Support Tools for Lotus WCM (IBM WebSphere Portal 7.0, 8.0, 8.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM Support Tools for Lotus WCM 
 CVE-2017-1535 (IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This ...)
 	NOT-FOR-US: IBM
 CVE-2017-1534
@@ -55637,7 +55637,7 @@
 CVE-2017-1508 (IBM Informix Dynamic Server 12.1 could allow a local user logged in ...)
 	NOT-FOR-US: IBM
 CVE-2017-1507 (IBM Jazz Foundation Products could disclose sensitive information ...)
-	TODO: check
+	NOT-FOR-US: IBM Jazz Foundation Products
 CVE-2017-1506
 	RESERVED
 CVE-2017-1505
@@ -55663,7 +55663,7 @@
 CVE-2017-1495 (IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a ...)
 	NOT-FOR-US: IBM
 CVE-2017-1494 (IBM Business Process Manager 8.5 is vulnerable to cross-site ...)
-	TODO: check
+	NOT-FOR-US: IBM Business Process Manager 
 CVE-2017-1493
 	RESERVED
 CVE-2017-1492
@@ -55805,7 +55805,7 @@
 CVE-2017-1424 (IBM Business Process Manager 8.5.7 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2017-1423 (IBM WebSphere Portal 8.5 and 9.0 exposes backend server URLs that are ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere Portal 
 CVE-2017-1422 (IBM MaaS360 DTM all versions up to 3.81 does not perform proper ...)
 	NOT-FOR-US: IBM
 CVE-2017-1421 (IBM iNotes is vulnerable to cross-site scripting. This vulnerability ...)
@@ -56111,7 +56111,7 @@
 CVE-2017-1271 (IBM Security Guardium 9.0, 9.1, and 9.5 supports interaction between ...)
 	NOT-FOR-US: IBM
 CVE-2017-1270 (IBM Security Guardium 10.0 does not renew a session variable after a ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1269 (IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL injection. A ...)
 	NOT-FOR-US: IBM
 CVE-2017-1268
@@ -56119,7 +56119,7 @@
 CVE-2017-1267 (IBM Security Guardium 10.0 and 10.1 processes patches, image backups ...)
 	NOT-FOR-US: IBM
 CVE-2017-1266 (IBM Security Guardium 10.0 specifies permissions for a ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1265
 	RESERVED
 CVE-2017-1264 (IBM Security Guardium 10.0 does not prove or insufficiently proves ...)
@@ -56127,9 +56127,9 @@
 CVE-2017-1263
 	RESERVED
 CVE-2017-1262 (IBM Security Guardium 10.0 is vulnerable to HTTP response splitting ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1261 (IBM Security Guardium 10.0 stores potentially sensitive information in ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1260
 	RESERVED
 CVE-2017-1259
@@ -56137,7 +56137,7 @@
 CVE-2017-1258 (IBM Security Guardium 10.0 and 10.1 does not perform an authentication ...)
 	NOT-FOR-US: IBM
 CVE-2017-1257 (IBM Security Guardium 10.0 discloses sensitive information to ...)
-	TODO: check
+	NOT-FOR-US: IBM Security Guardium 
 CVE-2017-1256 (IBM Security Guardium 10.0, 10.1 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2017-1255

More information about the Secure-testing-commits mailing list