[Secure-testing-commits] r49095 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Feb 21 09:31:47 UTC 2017
Author: jmm
Date: 2017-02-21 09:31:47 +0000 (Tue, 21 Feb 2017)
New Revision: 49095
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-21 09:10:12 UTC (rev 49094)
+++ data/CVE/list 2017-02-21 09:31:47 UTC (rev 49095)
@@ -10,13 +10,13 @@
CVE-2017-6099
RESERVED
CVE-2017-6098 (A SQL injection issue was discovered in the Mail Masta (aka mail-masta) ...)
- TODO: check
+ NOT-FOR-US: Mail Masta plugin for Wordpress
CVE-2017-6097 (A SQL injection issue was discovered in the Mail Masta (aka mail-masta) ...)
- TODO: check
+ NOT-FOR-US: Mail Masta plugin for Wordpress
CVE-2017-6096 (A SQL injection issue was discovered in the Mail Masta (aka mail-masta) ...)
- TODO: check
+ NOT-FOR-US: Mail Masta plugin for Wordpress
CVE-2017-6095 (A SQL injection issue was discovered in the Mail Masta (aka mail-masta) ...)
- TODO: check
+ NOT-FOR-US: Mail Masta plugin for Wordpress
CVE-2017-6094
RESERVED
CVE-2017-6093
@@ -50,11 +50,11 @@
CVE-2017-6079
RESERVED
CVE-2017-6078 (FastStone MaxView 3.0 and 3.1 allows user-assisted attackers to cause a ...)
- TODO: check
+ NOT-FOR-US: FastStone MaxView
CVE-2017-6077
RESERVED
CVE-2016-10227 (Zyxel USG50 Security Appliance and NWA3560-N Access Point allow remote ...)
- TODO: check
+ NOT-FOR-US: Zyxel
CVE-2017-6076
RESERVED
CVE-2017-6075
@@ -65,11 +65,11 @@
CVE-2017-6073
RESERVED
CVE-2017-6072 (CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2017-6071 (CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2017-6070 (CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2017-6069
RESERVED
CVE-2017-6068
@@ -380,7 +380,7 @@
CVE-2017-5960 (An issue was discovered in Phalcon Eye through 0.4.1. The vulnerability ...)
NOT-FOR-US: Phalcon Eye
CVE-2017-5959 (CSRF token bypass in GeniXCMS before 1.0.2 could result in escalation ...)
- TODO: check
+ NOT-FOR-US: GenixCMS
CVE-2017-5958
RESERVED
CVE-2017-5957
@@ -609,7 +609,7 @@
CVE-2017-5882 (Cross-site scripting (XSS) vulnerability in index.asp in SANADATA ...)
NOT-FOR-US: SanaCMS
CVE-2017-5881 (GOM Player 2.3.10.5266 allows remote attackers to cause a denial of ...)
- TODO: check
+ NOT-FOR-US: GOM Player
CVE-2017-5880 (Splunk Web in Splunk Enterprise versions 6.5.x before 6.5.2, 6.4.x ...)
NOT-FOR-US: Splunk
CVE-2017-5879 (An issue was discovered in Exponent CMS 2.4.1. This is a blind SQL ...)
@@ -16081,11 +16081,11 @@
NOTE: https://github.com/libgd/libgd/commit/6944ea10cb730d5071620439c6c2e823e6caeff1
NOTE: https://github.com/libgd/libgd/issues/340
CVE-2016-9316 (Multiple stored Cross-Site-Scripting (XSS) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2016-9315 (Privilege Escalation Vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2016-9314 (Sensitive Information Disclosure in ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2016-9313 (security/keys/big_key.c in the Linux kernel before 4.8.7 mishandles ...)
- linux 4.8.7-1
[jessie] - linux <not-affected> (Vulnerable code introduced later)
@@ -16165,7 +16165,7 @@
CVE-2016-9270
RESERVED
CVE-2016-9269 (Remote Command Execution in com.trend.iwss.gui.servlet.ManagePatches in ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2016-9268 (Unrestricted file upload vulnerability in the Blog appearance in the ...)
- dotclear <removed>
NOTE: http://dev.dotclear.org/2.0/changeset/445e9ff79a1fa81033591761d6a340e219d159b2
More information about the Secure-testing-commits
mailing list