[Secure-testing-commits] r58976 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Dec 27 22:17:17 UTC 2017


Author: carnil
Date: 2017-12-27 22:17:17 +0000 (Wed, 27 Dec 2017)
New Revision: 58976

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-27 22:12:08 UTC (rev 58975)
+++ data/CVE/list	2017-12-27 22:17:17 UTC (rev 58976)
@@ -33,21 +33,21 @@
 CVE-2017-17932
 	RESERVED
 CVE-2017-17931 (PHP Scripts Mall Resume Clone Script has SQL Injection via the ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Resume Clone Script
 CVE-2017-17930 (PHP Scripts Mall Professional Service Script has CSRF via ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Professional Service Script
 CVE-2017-17929 (PHP Scripts Mall Professional Service Script has XSS via the ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Professional Service Script
 CVE-2017-17928 (PHP Scripts Mall Professional Service Script has SQL injection via the ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Professional Service Script
 CVE-2017-17927 (PHP Scripts Mall Professional Service Script allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Professional Service Script
 CVE-2017-17926 (PHP Scripts Mall Professional Service Script has a predicable ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Professional Service Script
 CVE-2017-17925 (PHP Scripts Mall Professional Service Script has XSS via the ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Professional Service Script
 CVE-2017-17924 (PHP Scripts Mall Professional Service Script allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Professional Service Script
 CVE-2017-17923
 	RESERVED
 CVE-2017-17922
@@ -83,7 +83,7 @@
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/0d871e813a4f
 	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/533/
 CVE-2017-17911 (packages/core/contact.php in Archon 3.21 rev-1 has XSS in the referer ...)
-	TODO: check
+	NOT-FOR-US: Archon
 CVE-2017-17910
 	RESERVED
 CVE-2017-17909 (PHP Scripts Mall Responsive Realestate Script has XSS via the ...)
@@ -194,9 +194,9 @@
 CVE-2017-17877 (An issue was discovered in Valve Steam Link build 643. When the SSH ...)
 	NOT-FOR-US: Valve Steam Link
 CVE-2017-17876 (Biometric Shift Employee Management System 3.0 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Biometric Shift Employee Management System
 CVE-2017-17875 (The JEXTN FAQ Pro extension 4.0.0 for Joomla! has SQL Injection via the ...)
-	TODO: check
+	NOT-FOR-US: JEXTN FAQ Pro extension for Joomla!
 CVE-2017-17874 (Vanguard Marketplace Digital Products PHP 1.4 allows arbitrary file ...)
 	NOT-FOR-US: Vanguard Marketplace Digital Products PHP
 CVE-2017-17873 (Vanguard Marketplace Digital Products PHP 1.4 has SQL Injection via the ...)
@@ -10695,7 +10695,7 @@
 CVE-2017-16769
 	RESERVED
 CVE-2017-16768 (Cross-site scripting (XSS) vulnerability in User Policy editor in ...)
-	TODO: check
+	NOT-FOR-US: Synology MailPlus Server
 CVE-2017-16767
 	RESERVED
 CVE-2017-16766 (An improper access control vulnerability in synodsmnotify in Synology ...)




More information about the Secure-testing-commits mailing list