[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Strip trailing white spaces

Sat Dec 30 14:30:46 UTC 2017

Raphael Geissert pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ebeafb2f by Raphael Geissert at 2017-12-30T15:30:36+01:00
Strip trailing white spaces

- - - - -
e0beae7d by Raphael Geissert at 2017-12-30T15:30:37+01:00
auto NFUs

- - - - -


2 changed files:

- bin/check-new-issues
- data/CVE/list


Changes:

=====================================
bin/check-new-issues
=====================================

--- a/bin/check-new-issues
+++ b/bin/check-new-issues
@@ -519,6 +519,7 @@ sub auto_nfu {
 	}
 	if ($desc =~ m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|Trend\s+Micro|(?:SAP|IBM|EMC|NetApp|Micro\sFocus).+?(?=tool|is|version|[\d(,]))/) {
 		my $name = $1;
+		$name =~ s/\s$//;
 		return $name;
 	}
 	return '';


=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -56317,7 +56317,7 @@ CVE-2017-1700
 CVE-2017-1699
 	RESERVED
 CVE-2017-1698 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could reveal sensitive ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere Portal
 CVE-2017-1697
 	RESERVED
 CVE-2017-1696 (IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to ...)
@@ -56983,7 +56983,7 @@ CVE-2017-1367
 CVE-2017-1366
 	RESERVED
 CVE-2017-1365 (IBM Team Concert (RTC including IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM Team Concert
 CVE-2017-1364 (IBM RELM 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This ...)
 	NOT-FOR-US: IBM
 CVE-2017-1363 (IBM Team Concert (RTC) is vulnerable to cross-site scripting. This ...)
@@ -57331,7 +57331,7 @@ CVE-2017-1193 (IBM Sterling B2B Integrator Standard Edition 5.2 could allow user
 CVE-2017-1192 (IBM Sterling B2B Integrator 5.2 is vulnerable to an XML External ...)
 	NOT-FOR-US: IBM
 CVE-2017-1191 (An undisclosed vulnerability in CLM applications (including IBM ...)
-	TODO: check
+	NOT-FOR-US: IBM Rational Collaborative Lifecycle Management
 CVE-2017-1190 (IBM Emptoris Strategic Supply Management Platform 10.x and 10.1 could ...)
 	NOT-FOR-US: IBM
 CVE-2017-1189 (IBM WebSphere Portal and Web Content Manager 6.1, 7.0, and 8.0 is ...)
@@ -94323,13 +94323,13 @@ CVE-2015-7671
 CVE-2015-7670 (Multiple SQL injection vulnerabilities in includes/update.php in the ...)
 	NOT-FOR-US: Support Ticket System plugin for WordPress
 CVE-2015-7669 (Multiple directory traversal vulnerabilities in (1) ...)
-	TODO: check
+	NOT-FOR-US: Easy2Map plugin for WordPress
 CVE-2015-7668 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Easy2Map plugin for WordPress
 CVE-2015-7667 (Multiple cross-site scripting (XSS) vulnerabilities in (1) ...)
-	TODO: check
+	NOT-FOR-US: ResAds plugin for WordPress
 CVE-2015-7666 (Multiple cross-site scripting (XSS) vulnerabilities in the (1) ...)
-	TODO: check
+	NOT-FOR-US: Payment Form for PayPal Pro plugin for WordPress
 CVE-2015-7664
 	RESERVED
 CVE-2015-7663 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ef5ac40c3e393141f1b14cc9c7def8d21f380395...e0beae7d602ea04444be453e20ad848eb76c2f2f

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ef5ac40c3e393141f1b14cc9c7def8d21f380395...e0beae7d602ea04444be453e20ad848eb76c2f2f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20171230/257c87d8/attachment-0001.html>
