[Secure-testing-commits] r48260 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Jan 21 18:04:24 UTC 2017
Author: jmm
Date: 2017-01-21 18:04:24 +0000 (Sat, 21 Jan 2017)
New Revision: 48260
Modified:
data/CVE/list
Log:
NFUs and a few issues in packages which were historically in Debian
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-21 17:16:00 UTC (rev 48259)
+++ data/CVE/list 2017-01-21 18:04:24 UTC (rev 48260)
@@ -110,19 +110,19 @@
- moodle 2.7.18+dfsg-1
NOTE: https://moodle.org/mod/forum/discuss.php?d=345912
CVE-2017-5521 (An issue was discovered on NETGEAR R8500, R8300, R7000, R6400, R7300, ...)
- TODO: check
+ NOT-FOR-US: NETGEAR
CVE-2017-5520 (The media rename feature in GeniXCMS through 0.0.8 does not consider ...)
- TODO: check
+ NOT-FOR-US: GenixCMS
CVE-2017-5519 (SQL injection vulnerability in Posts.class.php in GeniXCMS through ...)
- TODO: check
+ NOT-FOR-US: GenixCMS
CVE-2017-5518 (The media-file upload feature in GeniXCMS through 0.0.8 allows remote ...)
- TODO: check
+ NOT-FOR-US: GenixCMS
CVE-2017-5517 (SQL injection vulnerability in author.control.php in GeniXCMS through ...)
- TODO: check
+ NOT-FOR-US: GenixCMS
CVE-2017-5516 (Multiple cross-site scripting (XSS) vulnerabilities in the user forms ...)
- TODO: check
+ NOT-FOR-US: GenixCMS
CVE-2017-5515 (Cross-site scripting (XSS) vulnerability in the user prompt function in ...)
- TODO: check
+ NOT-FOR-US: GenixCMS
CVE-2017-5514
RESERVED
CVE-2017-5513
@@ -136,7 +136,7 @@
CVE-2017-5495
RESERVED
CVE-2017-5494 (Multiple cross-site scripting (XSS) vulnerabilities in the file types ...)
- TODO: check
+ - b2evolution <removed>
CVE-2017-5486
RESERVED
CVE-2017-5485
@@ -150,7 +150,7 @@
CVE-2017-5481
RESERVED
CVE-2017-5480 (Directory traversal vulnerability in inc/files/files.ctrl.php in ...)
- TODO: check
+ - b2evolution <removed>
CVE-2017-5479
RESERVED
CVE-2017-5478
@@ -158,11 +158,11 @@
CVE-2017-5477
RESERVED
CVE-2017-5476 (Serendipity through 2.0.5 allows CSRF for the installation of an event ...)
- TODO: check
+ - serendipity <removed>
CVE-2017-5475 (comment.php in Serendipity through 2.0.5 allows CSRF in deleting any ...)
- TODO: check
+ - serendipity <removed>
CVE-2017-5474 (Open redirect vulnerability in comment.php in Serendipity through 2.0.5 ...)
- TODO: check
+ - serendipity <removed>
CVE-2017-5473 (Cross-site request forgery (CSRF) vulnerability in ntopng through 2.4 ...)
TODO: check
CVE-2017-5472
@@ -26120,7 +26120,7 @@
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
[wheezy] - virtualbox <end-of-life> (DSA 3454)
CVE-2016-5607 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
- TODO: check
+ NOT-FOR-US: Oracle FLEXCUBE
CVE-2016-5606 (Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local ...)
NOT-FOR-US: Solaris
CVE-2016-5605 (Unspecified vulnerability in the Oracle VM VirtualBox component before ...)
@@ -26205,7 +26205,7 @@
CVE-2016-5576 (Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local ...)
NOT-FOR-US: Solaris
CVE-2016-5575 (Unspecified vulnerability in the Oracle Common Applications Calendar ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2016-5574 (Unspecified vulnerability in the Oracle Outside In Technology ...)
NOT-FOR-US: Oracle
CVE-2016-5573 (Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and ...)
@@ -26221,9 +26221,9 @@
CVE-2016-5571 (Unspecified vulnerability in the Oracle Applications DBA component in ...)
NOT-FOR-US: Oracle
CVE-2016-5570 (Unspecified vulnerability in the Oracle Applications DBA component in ...)
- NOT-FOR-US: Oracle
+ NOT-FOR-US: Oracle
CVE-2016-5569 (Unspecified vulnerability in the Oracle FLEXCUBE Enterprise Limits and ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2016-5568 (Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 ...)
- openjdk-8 <not-affected> (Only affects Windows)
- openjdk-7 <not-affected> (Only affects Windows)
@@ -26233,11 +26233,11 @@
CVE-2016-5566 (Unspecified vulnerability in Oracle Sun Solaris 11.3 allows remote ...)
NOT-FOR-US: Solaris
CVE-2016-5565 (Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2016-5564 (Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2016-5563 (Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2016-5562 (Unspecified vulnerability in the Oracle iProcurement component in ...)
NOT-FOR-US: Oracle
CVE-2016-5561 (Unspecified vulnerability in Oracle Sun Solaris 11.3 allows remote ...)
More information about the Secure-testing-commits
mailing list