[Secure-testing-commits] r49261 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2017-02-27 09:38:30 +0000 (Mon, 27 Feb 2017)
New Revision: 49261

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-02-27 09:27:23 UTC (rev 49260)
+++ data/CVE/list	2017-02-27 09:38:30 UTC (rev 49261)
@@ -13,11 +13,11 @@
 CVE-2017-6344 (XML External Entity (XXE) vulnerability in Grails PDF Plugin 0.6 allows ...)
 	TODO: check
 CVE-2017-6343 (The web interface on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware ...)
-	TODO: check
+	NOT-FOR-US: Dahua devices
 CVE-2017-6342 (Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 ...)
-	TODO: check
+	NOT-FOR-US: Dahua devices
 CVE-2017-6341 (Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 ...)
-	TODO: check
+	NOT-FOR-US: Dahua devices
 CVE-2017-6340
 	RESERVED
 CVE-2017-6339
@@ -183,7 +183,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2017/02/15/4
 	NOTE: fixed in https://github.com/Yeraze/ytnef/commit/b36d6b25b7a546fc28d6c3812124e487987a4910
 CVE-2017-6297 (The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does ...)
-	TODO: check
+	NOT-FOR-US: MikroTik RouterOS
 CVE-2017-6296
 	RESERVED
 CVE-2017-6295
@@ -10085,9 +10085,9 @@
 CVE-2017-2684 (Siemens SIMATIC Logon prior to V1.5 SP3 Update 2 could allow an ...)
 	NOT-FOR-US: Siemens
 CVE-2017-2683 (A non-privileged user of the Siemens web application RUGGEDCOM NMS < ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2017-2682 (The Siemens web application RUGGEDCOM NMS < V1.2 on port 8080/TCP and ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2017-2681
 	RESERVED
 CVE-2017-2680
@@ -20711,7 +20711,7 @@
 CVE-2017-0038 (gdi32.dll in Graphics Device Interface (GDI) in Microsoft Windows Vista ...)
 	NOT-FOR-US: Microsoft
 CVE-2017-0037 (Microsoft Internet Explorer 11 and Microsoft Edge have a type confusion ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2017-0036
 	RESERVED
 CVE-2017-0035