[Secure-testing-commits] r58787 - bin data/CVE

Raphael Geissert geissert at moszumanska.debian.org
Thu Dec 21 12:25:34 UTC 2017 

Author: geissert
Date: 2017-12-21 12:25:34 +0000 (Thu, 21 Dec 2017)
New Revision: 58787

Modified:
   bin/check-new-issues
   data/CVE/list
Log:
more auto NFUs


Modified: bin/check-new-issues
===================================================================
--- bin/check-new-issues	2017-12-21 12:24:47 UTC (rev 58786)
+++ bin/check-new-issues	2017-12-21 12:25:34 UTC (rev 58787)
@@ -517,7 +517,7 @@
 		my ($name, $type) = ($1, $2);
 		return "$name $type for WordPress";
 	}
-	if ($desc =~ m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|Trend\s+Micro|(?:SAP|IBM|EMC).+?(?=tool|is|[\d(,]))/) {
+	if ($desc =~ m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|Trend\s+Micro|(?:SAP|IBM|EMC|NetApp|Micro\sFocus).+?(?=tool|is|version|[\d(,]))/) {
 		my $name = $1;
 		return $name;
 	}

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-21 12:24:47 UTC (rev 58786)
+++ data/CVE/list	2017-12-21 12:25:34 UTC (rev 58787)
@@ -16690,7 +16690,7 @@
 CVE-2017-14584
 	RESERVED
 CVE-2017-14583 (NetApp Clustered Data ONTAP versions 9.x prior to 9.1P10 and 9.2P2 are ...)
-	TODO: check
+	NOT-FOR-US: NetApp Clustered Data ONTAP 
 CVE-2017-14582 (The Zoho Site24x7 Mobile Network Poller application before 1.1.5 for ...)
 	NOT-FOR-US: Zoho
 CVE-2017-XXXX [pcb code injection by malicious layout file]
@@ -17309,9 +17309,9 @@
 CVE-2017-14363
 	RESERVED
 CVE-2017-14362 (Cross-Site Request Forgery vulnerability in Micro Focus Project and ...)
-	TODO: check
+	NOT-FOR-US: Micro Focus Project and Portfolio Management Center
 CVE-2017-14361 (Man-In-The-Middle vulnerability in Micro Focus Project and Portfolio ...)
-	TODO: check
+	NOT-FOR-US: Micro Focus Project and Portfolio Management Center
 CVE-2017-14360 (A potential security vulnerability has been identified in HPE Content ...)
 	NOT-FOR-US: HPE
 CVE-2017-14359 (A potential security vulnerability has been identified in HPE ...)

More information about the Secure-testing-commits mailing list