[Secure-testing-commits] r58915 - data/CVE
Raphael Geissert
geissert at moszumanska.debian.org
Mon Dec 25 20:34:23 UTC 2017
Author: geissert
Date: 2017-12-25 20:34:23 +0000 (Mon, 25 Dec 2017)
New Revision: 58915
Modified:
data/CVE/list
Log:
Whitespace cleanup in NFU entries
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-25 18:41:45 UTC (rev 58914)
+++ data/CVE/list 2017-12-25 20:34:23 UTC (rev 58915)
@@ -81,7 +81,7 @@
CVE-2017-17878 (An issue was discovered in Valve Steam Link build 643. Root passwords ...)
NOT-FOR-US: Valve Steam Link
CVE-2017-17877 (An issue was discovered in Valve Steam Link build 643. When the SSH ...)
- NOT-FOR-US: Valve Steam Link
+ NOT-FOR-US: Valve Steam Link
CVE-2017-17876
RESERVED
CVE-2017-17875
@@ -10729,11 +10729,11 @@
CVE-2017-16683 (Denial of Service (DOS) in SAP Business Objects Platform, Enterprise ...)
NOT-FOR-US: SAP Business Objects Platform
CVE-2017-16682 (SAP NetWeaver Internet Transaction Server (ITS), SAP Basis from 7.00 ...)
- NOT-FOR-US: SAP NetWeaver Internet Transaction Server
+ NOT-FOR-US: SAP NetWeaver Internet Transaction Server
CVE-2017-16681 (Cross-Site Scripting (XSS) vulnerability in SAP Business Intelligence ...)
NOT-FOR-US: SAP Business Intelligence Promotion Management Application
CVE-2017-16680 (Two potential audit log injections in SAP HANA extended application ...)
- NOT-FOR-US: SAP HANA extended application services
+ NOT-FOR-US: SAP HANA extended application services
CVE-2017-16679 (URL redirection vulnerability in SAP's Startup Service, SAP KERNEL 32 ...)
NOT-FOR-US: SAP's Startup Service
CVE-2017-16678 (Server Side Request Forgery (SSRF) vulnerability in SAP NetWeaver ...)
@@ -14612,7 +14612,7 @@
CVE-2017-15305 (XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php. ...)
NOT-FOR-US: NexusPHP
CVE-2017-15304 (/bin/login.php in the Web Panel on the Airtame HDMI dongle with ...)
- NOT-FOR-US: Airtame HDMI dongle
+ NOT-FOR-US: Airtame HDMI dongle
CVE-2017-15303 (In CPUID CPU-Z before 1.43, there is an arbitrary memory write that ...)
NOT-FOR-US: CPUID CPU-Z
CVE-2017-15302 (In CPUID CPU-Z through 1.81, there are improper access rights to a ...)
@@ -16978,7 +16978,7 @@
CVE-2017-14584
RESERVED
CVE-2017-14583 (NetApp Clustered Data ONTAP versions 9.x prior to 9.1P10 and 9.2P2 are ...)
- NOT-FOR-US: NetApp Clustered Data ONTAP
+ NOT-FOR-US: NetApp Clustered Data ONTAP
CVE-2017-14582 (The Zoho Site24x7 Mobile Network Poller application before 1.1.5 for ...)
NOT-FOR-US: Zoho
CVE-2017-XXXX [pcb code injection by malicious layout file]
@@ -17547,11 +17547,11 @@
CVE-2017-14388 (Cloud Foundry Foundation GrootFS release 0.3.x versions prior to 0.30.0 ...)
NOT-FOR-US: Cloud Foundry Foundation GrootFS
CVE-2017-14387 (The NFS service in EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, and ...)
- NOT-FOR-US: EMC Isilon OneFS
+ NOT-FOR-US: EMC Isilon OneFS
CVE-2017-14386 (The web user interface of Dell 2335dn and 2355dn Multifunction Laser ...)
NOT-FOR-US: Dell
CVE-2017-14385 (An issue was discovered in EMC Data Domain DD OS 5.7 family, versions ...)
- NOT-FOR-US: EMC Data Domain DD OS
+ NOT-FOR-US: EMC Data Domain DD OS
CVE-2017-14384
RESERVED
CVE-2017-14383
@@ -17561,7 +17561,7 @@
CVE-2017-14381
RESERVED
CVE-2017-14380 (In EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, 8.0.0.0 - 8.0.0.4, ...)
- NOT-FOR-US: EMC Isilon OneFS
+ NOT-FOR-US: EMC Isilon OneFS
CVE-2017-14379 (EMC RSA Authentication Manager before 8.2 SP1 P6 has a cross-site ...)
NOT-FOR-US: EMC RSA
CVE-2017-14378 (EMC RSA Authentication Agent API 8.5 for C and RSA Authentication Agent ...)
@@ -49339,7 +49339,7 @@
CVE-2016-10043 (An issue was discovered in Radisys MRF Web Panel (SWMS) 9.0.1. The ...)
NOT-FOR-US: Radisys MRF Web Panel
CVE-2016-10042 (Authorization Bypass in the Web interface of Arcadyan SLT-00 Star* (aka ...)
- NOT-FOR-US: Arcadyan SLT-00 Star* devices
+ NOT-FOR-US: Arcadyan SLT-00 Star* devices
CVE-2016-10041 (An issue was discovered in Sprecher Automation SPRECON-E Service ...)
NOT-FOR-US: Sprecher Automation SPRECON-E Service
CVE-2016-10040 (Stack-based buffer overflow in QXmlSimpleReader in Qt 4.8.5 allows ...)
@@ -54415,9 +54415,9 @@
CVE-2017-2277 (WG-C10 v3.0.79 and earlier allows an attacker to bypass access ...)
NOT-FOR-US: WG-C10
CVE-2017-2276 (Buffer overflow in WG-C10 v3.0.79 and earlier allows an attacker to ...)
- NOT-FOR-US: WG-C10
+ NOT-FOR-US: WG-C10
CVE-2017-2275 (WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary OS ...)
- NOT-FOR-US: WG-C10
+ NOT-FOR-US: WG-C10
CVE-2017-2274 (Cross-site scripting vulnerability in WMR-433 firmware Ver.1.02 and ...)
NOT-FOR-US: WMR-433* firmware
CVE-2017-2273 (Cross-site request forgery (CSRF) vulnerability in WMR-433 firmware ...)
@@ -55447,13 +55447,13 @@
CVE-2017-1761
RESERVED
CVE-2017-1760 (IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow a local user to crash ...)
- NOT-FOR-US: IBM WebSphere MQ
+ NOT-FOR-US: IBM WebSphere MQ
CVE-2017-1759
RESERVED
CVE-2017-1758
RESERVED
CVE-2017-1757 (IBM Security Guardium 10.0 is vulnerable to SQL injection. A remote ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1756
RESERVED
CVE-2017-1755
@@ -55465,7 +55465,7 @@
CVE-2017-1752
RESERVED
CVE-2017-1751 (IBM Robotic Process Automation with Automation Anywhere 10.0.0 is ...)
- NOT-FOR-US: IBM Robotic Process Automation with Automation Anywhere
+ NOT-FOR-US: IBM Robotic Process Automation with Automation Anywhere
CVE-2017-1750
RESERVED
CVE-2017-1749
@@ -55475,7 +55475,7 @@
CVE-2017-1747
RESERVED
CVE-2017-1746 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is ...)
- NOT-FOR-US: IBM Jazz for Service Management
+ NOT-FOR-US: IBM Jazz for Service Management
CVE-2017-1745
RESERVED
CVE-2017-1744
@@ -55535,7 +55535,7 @@
CVE-2017-1717
RESERVED
CVE-2017-1716 (IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could disclose ...)
- NOT-FOR-US: IBM Tivoli Workload Scheduler
+ NOT-FOR-US: IBM Tivoli Workload Scheduler
CVE-2017-1715
RESERVED
CVE-2017-1714
@@ -55575,11 +55575,11 @@
CVE-2017-1697
RESERVED
CVE-2017-1696 (IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to ...)
- NOT-FOR-US: IBM QRadar
+ NOT-FOR-US: IBM QRadar
CVE-2017-1695
RESERVED
CVE-2017-1694 (IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain ...)
- NOT-FOR-US: IBM Integration Bus
+ NOT-FOR-US: IBM Integration Bus
CVE-2017-1693
RESERVED
CVE-2017-1692
@@ -55601,7 +55601,7 @@
CVE-2017-1684
RESERVED
CVE-2017-1683 (IBM Connections Engagement Center 6.0 is vulnerable to cross-site ...)
- NOT-FOR-US: IBM Connections Engagement Center
+ NOT-FOR-US: IBM Connections Engagement Center
CVE-2017-1682
RESERVED
CVE-2017-1681
@@ -55703,9 +55703,9 @@
CVE-2017-1633
RESERVED
CVE-2017-1632 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. ...)
- NOT-FOR-US: IBM Sterling File Gateway
+ NOT-FOR-US: IBM Sterling File Gateway
CVE-2017-1631 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is ...)
- NOT-FOR-US: IBM Jazz for Service Management
+ NOT-FOR-US: IBM Jazz for Service Management
CVE-2017-1630
RESERVED
CVE-2017-1629
@@ -55741,7 +55741,7 @@
CVE-2017-1614
RESERVED
CVE-2017-1613 (IBM Connections 6.0 could allow an unauthenticated remote attacker to ...)
- NOT-FOR-US: IBM Connections
+ NOT-FOR-US: IBM Connections
CVE-2017-1612
RESERVED
CVE-2017-1611
@@ -55755,7 +55755,7 @@
CVE-2017-1607 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...)
NOT-FOR-US: IBM
CVE-2017-1606 (IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) ...)
- NOT-FOR-US: IBM Financial Transaction Manager
+ NOT-FOR-US: IBM Financial Transaction Manager
CVE-2017-1605
RESERVED
CVE-2017-1604
@@ -55767,17 +55767,17 @@
CVE-2017-1601
RESERVED
CVE-2017-1600 (IBM Security Guardium 10.0 Database Activity Monitor is vulnerable to ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1599
RESERVED
CVE-2017-1598 (IBM Security Guardium 10.0 Database Activity Monitor uses weaker than ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1597
RESERVED
CVE-2017-1596 (IBM Security Guardium 10.0 Database Activity Monitor could allow a ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1595 (IBM Security Guardium 10.0 Database Activity Monitor could allow a ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1594
RESERVED
CVE-2017-1593 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is vulnerable to ...)
@@ -55851,7 +55851,7 @@
CVE-2017-1559
RESERVED
CVE-2017-1558 (IBM Maximo Asset Management 7.5 and 7.6 could allow a remote attacker ...)
- NOT-FOR-US: IBM Maximo Asset Management
+ NOT-FOR-US: IBM Maximo Asset Management
CVE-2017-1557
RESERVED
CVE-2017-1556 (IBM API Connect 5.0.7.0 through 5.0.7.2 is vulnerable to a regular ...)
@@ -55867,15 +55867,15 @@
CVE-2017-1551 (IBM API Connect 5.0.0.0 through 5.0.7.2 could allow a remote attacker ...)
NOT-FOR-US: IBM
CVE-2017-1550 (IBM Sterling File Gateway 2.2 could allow an authenticated user to ...)
- NOT-FOR-US: IBM Sterling File Gateway
+ NOT-FOR-US: IBM Sterling File Gateway
CVE-2017-1549 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. ...)
- NOT-FOR-US: IBM Sterling File Gateway
+ NOT-FOR-US: IBM Sterling File Gateway
CVE-2017-1548 (IBM Sterling File Gateway 2.2 could allow a remote attacker to ...)
- NOT-FOR-US: IBM Sterling File Gateway
+ NOT-FOR-US: IBM Sterling File Gateway
CVE-2017-1547
RESERVED
CVE-2017-1546 (IBM DOORS Next Generation (DNG/RRC) 4.07, 5.0, and 6.0 is vulnerable ...)
- NOT-FOR-US: IBM DOORS Next Generation
+ NOT-FOR-US: IBM DOORS Next Generation
CVE-2017-1545
RESERVED
CVE-2017-1544
@@ -55895,7 +55895,7 @@
CVE-2017-1537
RESERVED
CVE-2017-1536 (IBM Support Tools for Lotus WCM (IBM WebSphere Portal 7.0, 8.0, 8.5 ...)
- NOT-FOR-US: IBM Support Tools for Lotus WCM
+ NOT-FOR-US: IBM Support Tools for Lotus WCM
CVE-2017-1535 (IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This ...)
NOT-FOR-US: IBM
CVE-2017-1534
@@ -55979,7 +55979,7 @@
CVE-2017-1495 (IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a ...)
NOT-FOR-US: IBM
CVE-2017-1494 (IBM Business Process Manager 8.5 is vulnerable to cross-site ...)
- NOT-FOR-US: IBM Business Process Manager
+ NOT-FOR-US: IBM Business Process Manager
CVE-2017-1493
RESERVED
CVE-2017-1492
@@ -56121,11 +56121,11 @@
CVE-2017-1424 (IBM Business Process Manager 8.5.7 is vulnerable to cross-site ...)
NOT-FOR-US: IBM
CVE-2017-1423 (IBM WebSphere Portal 8.5 and 9.0 exposes backend server URLs that are ...)
- NOT-FOR-US: IBM WebSphere Portal
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2017-1422 (IBM MaaS360 DTM all versions up to 3.81 does not perform proper ...)
NOT-FOR-US: IBM
CVE-2017-1421 (IBM iNotes is vulnerable to cross-site scripting. This vulnerability ...)
- NOT-FOR-US: IBM iNotes
+ NOT-FOR-US: IBM iNotes
CVE-2017-1420
RESERVED
CVE-2017-1419
@@ -56427,7 +56427,7 @@
CVE-2017-1271 (IBM Security Guardium 9.0, 9.1, and 9.5 supports interaction between ...)
NOT-FOR-US: IBM
CVE-2017-1270 (IBM Security Guardium 10.0 does not renew a session variable after a ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1269 (IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL injection. A ...)
NOT-FOR-US: IBM
CVE-2017-1268
@@ -56435,7 +56435,7 @@
CVE-2017-1267 (IBM Security Guardium 10.0 and 10.1 processes patches, image backups ...)
NOT-FOR-US: IBM
CVE-2017-1266 (IBM Security Guardium 10.0 specifies permissions for a ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1265
RESERVED
CVE-2017-1264 (IBM Security Guardium 10.0 does not prove or insufficiently proves ...)
@@ -56443,9 +56443,9 @@
CVE-2017-1263
RESERVED
CVE-2017-1262 (IBM Security Guardium 10.0 is vulnerable to HTTP response splitting ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1261 (IBM Security Guardium 10.0 stores potentially sensitive information in ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1260
RESERVED
CVE-2017-1259
@@ -56453,7 +56453,7 @@
CVE-2017-1258 (IBM Security Guardium 10.0 and 10.1 does not perform an authentication ...)
NOT-FOR-US: IBM
CVE-2017-1257 (IBM Security Guardium 10.0 discloses sensitive information to ...)
- NOT-FOR-US: IBM Security Guardium
+ NOT-FOR-US: IBM Security Guardium
CVE-2017-1256 (IBM Security Guardium 10.0, 10.1 is vulnerable to cross-site ...)
NOT-FOR-US: IBM
CVE-2017-1255
@@ -84332,7 +84332,7 @@
CVE-2016-2035
REJECTED
CVE-2016-2034 (SQL injection vulnerability in ClearPass Policy Manager 6.5.x through ...)
- NOT-FOR-US: ClearPass Policy Manager
+ NOT-FOR-US: ClearPass Policy Manager
CVE-2016-2033
RESERVED
CVE-2016-2032
@@ -119867,7 +119867,7 @@
CVE-2014-8754 (Open redirect vulnerability in track-click.php in the Ad-Manager ...)
NOT-FOR-US: WordPress plugin ad-manager-for-wp
CVE-2014-8753 (Multiple cross-site scripting (XSS) vulnerabilities in Cit-e-Net ...)
- NOT-FOR-US: Cit-e-Net
+ NOT-FOR-US: Cit-e-Net
CVE-2014-8752 (Multiple cross-site scripting (XSS) vulnerabilities in view.php in ...)
NOT-FOR-US: JCE-Tech PHP Video Script
CVE-2014-8751 (Multiple cross-site scripting (XSS) vulnerabilities in goYWP WebPress ...)
@@ -188610,7 +188610,7 @@
CVE-2011-1546 (Multiple SQL injection vulnerabilities in Andy's PHP Knowledgebase ...)
NOT-FOR-US: Aphpkb
CVE-2011-1545 (Cross-site request forgery (CSRF) vulnerability in HP Insight Control ...)
- NOT-FOR-US: HP Insight Control Performance Management
+ NOT-FOR-US: HP Insight Control Performance Management
CVE-2011-1544 (Unspecified vulnerability in HP Insight Control Performance Management ...)
NOT-FOR-US: HP Insight Control Performance Management
CVE-2011-1543 (Cross-site request forgery (CSRF) vulnerability in HP Systems Insight ...)
@@ -189361,7 +189361,7 @@
[squeeze] - chromium-browser <not-affected>
- webkit <not-affected> (chromium specific)
CVE-2011-1300 (The Program::getActiveUniformMaxLength function in ...)
- NOT-FOR-US: Mozilla Firefox on Windows, Google Chrome on Windows
+ NOT-FOR-US: Mozilla Firefox on Windows, Google Chrome on Windows
CVE-2011-1299
RESERVED
CVE-2011-1298
More information about the Secure-testing-commits
mailing list