[Secure-testing-commits] r48715 - data/CVE

Thorsten Alteholz alteholz at moszumanska.debian.org
Sat Feb 4 18:51:34 UTC 2017 

Author: alteholz
Date: 2017-02-04 18:51:33 +0000 (Sat, 04 Feb 2017)
New Revision: 48715

Modified:
   data/CVE/list
Log:
Microsoft NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-02-04 18:45:49 UTC (rev 48714)
+++ data/CVE/list	2017-02-04 18:51:33 UTC (rev 48715)
@@ -21831,7 +21831,7 @@
 CVE-2016-7207
 	RESERVED
 CVE-2016-7206 (Cross-site scripting (XSS) vulnerability in Microsoft Edge allows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-7205 (Animation Manager in Microsoft Windows Server 2008 R2 SP1, Windows 7 ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-7204 (Microsoft Edge allows remote attackers to access arbitrary "My ...)
@@ -21881,7 +21881,7 @@
 CVE-2016-7182 (The Graphics component in Microsoft Windows Vista SP2; Windows Server ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-7181 (Microsoft Edge allows remote attackers to execute arbitrary code or ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-7393 [stack-based buffer overflow in aac_sync (aac_parser.c)]
 	RESERVED
 	{DLA-644-1}
@@ -34899,13 +34899,13 @@
 CVE-2016-3380
 	RESERVED
 CVE-2016-3379 (Cross-site scripting (XSS) vulnerability in Microsoft Exchange Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3378 (Open redirect vulnerability in Microsoft Exchange Server 2013 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3377 (The Chakra JavaScript engine in Microsoft Edge allows remote attackers ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3376 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3375 (The OLE Automation mechanism and VBScript scripting engine in ...)
 	TODO: check
 CVE-2016-3374 (The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 ...)
@@ -34923,7 +34923,7 @@
 CVE-2016-3368 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3367 (StringBuilder in Microsoft Silverlight 5 before 5.1.50709.0 does not ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3366 (Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3365 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 ...)
@@ -34959,9 +34959,9 @@
 CVE-2016-3350 (The Chakra JavaScript engine in Microsoft Edge allows remote attackers ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3349 (The kernel-mode drivers in Microsoft Windows 8.1, Windows Server 2012 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3348 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3347
 	RESERVED
 CVE-2016-3346 (Microsoft Windows 10 Gold, 1511, and 1607 does not properly enforce ...)
@@ -34969,13 +34969,13 @@
 CVE-2016-3345 (The SMBv1 server in Microsoft Windows Vista SP2, Windows Server 2008 ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3344 (The Secure Kernel Mode feature in Microsoft Windows 10 Gold and 1511 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3343 (The Common Log File System (CLFS) driver in Microsoft Windows Vista ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3342 (The Common Log File System (CLFS) driver in Microsoft Windows Vista ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3341 (The kernel-mode drivers in Transaction Manager in Microsoft Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3340 (The Common Log File System (CLFS) driver in Microsoft Windows Vista ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3339
@@ -35035,13 +35035,13 @@
 CVE-2016-3312 (ActiveSyncProvider in Microsoft Windows 10 Gold and 1511 allows ...)
 	TODO: check
 CVE-2016-3311 (The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3310 (The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3309 (The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3308 (The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3307
 	RESERVED
 CVE-2016-3306 (The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and ...)
@@ -35206,7 +35206,7 @@
 CVE-2016-3227 (Use-after-free vulnerability in the DNS Server component in Microsoft ...)
 	TODO: check
 CVE-2016-3226 (Active Directory in Microsoft Windows Server 2008 R2 SP1 and Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3225 (The SMB server component in Microsoft Windows Vista SP2, Windows ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3224
@@ -35216,13 +35216,13 @@
 CVE-2016-3222 (Microsoft Edge allows remote attackers to execute arbitrary code or ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3221 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3220 (atmfd.dll in the Adobe Type Manager Font Driver in Microsoft Windows ...)
 	TODO: check
 CVE-2016-3219 (The kernel-mode driver in Microsoft Windows 10 Gold and 1511 allows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3218 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3217
 	RESERVED
 CVE-2016-3216 (GDI32.dll in the Graphics component in Microsoft Windows Vista SP2, ...)
@@ -35252,7 +35252,7 @@
 CVE-2016-3204 (The Microsoft (1) JScript 5.8 and 9 and (2) VBScript 5.7 and 5.8 ...)
 	TODO: check
 CVE-2016-3203 (Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-3202 (The Microsoft (1) Chakra JavaScript, (2) JScript, and (3) VBScript ...)
 	NOT-FOR-US: Microsoft
 CVE-2016-3201 (Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 ...)
@@ -45824,7 +45824,7 @@
 CVE-2016-0197 (dxgkrnl.sys in the DirectX Graphics kernel subsystem in the ...)
 	TODO: check
 CVE-2016-0196 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2016-0195 (The Imaging Component in Microsoft Windows Vista SP2, Windows Server ...)
 	TODO: check
 CVE-2016-0194 (Microsoft Internet Explorer 10 and 11 allows remote attackers to ...)

More information about the Secure-testing-commits mailing list