[Secure-testing-commits] r53208 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jul 6 06:44:50 UTC 2017
Author: carnil
Date: 2017-07-06 06:44:50 +0000 (Thu, 06 Jul 2017)
New Revision: 53208
Modified:
data/CVE/list
Log:
Process NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-06 05:54:05 UTC (rev 53207)
+++ data/CVE/list 2017-07-06 06:44:50 UTC (rev 53208)
@@ -5540,7 +5540,7 @@
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1037559#c7
NOTE: Proposed patch: https://sourceware.org/ml/libc-alpha/2017-05/msg00105.html
CVE-2017-8803 (Notepad++ 7.3.3 (32-bit) with Hex Editor Plugin v0.9.5 might allow ...)
- TODO: check
+ NOT-FOR-US: Notepad++
CVE-2017-8802
RESERVED
CVE-2017-8801 (Trend Micro OfficeScan 11.0 before SP1 CP 6325 (with Agent Module Build ...)
@@ -5635,7 +5635,7 @@
CVE-2017-8767
REJECTED
CVE-2017-8766 (IrfanView version 4.44 (32bit) allows remote attackers to execute code ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2017-8765 (The function named ReadICONImage in coders\icon.c in ImageMagick ...)
{DSA-3863-1 DLA-960-1}
- imagemagick 8:6.9.7.4+dfsg-7 (low; bug #862653)
@@ -6558,9 +6558,9 @@
CVE-2017-8371 (Schneider Electric StruxureWare Data Center Expert before 7.4.0 uses ...)
NOT-FOR-US: Schneider Electric
CVE-2017-8370 (IrfanView version 4.44 (32bit) with FPX Plugin 4.45 allows remote ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2017-8369 (IrfanView version 4.44 (32bit) has a "Data from Faulting Address ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2017-8368 (Sublime Text 3 Build 3126 might allow user-assisted attackers to ...)
TODO: check
CVE-2017-8367 (Buffer overflow in Ether Software Easy MOV Converter 1.4.24, Easy DVD ...)
@@ -20335,13 +20335,13 @@
CVE-2016-9990 (IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This ...)
NOT-FOR-US: IBM
CVE-2016-9989 (IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-9988 (IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-9987 (IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-9986 (IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-9985 (IBM Cognos Server 10.1.1 and 10.2 stores highly sensitive information ...)
NOT-FOR-US: IBM
CVE-2016-9984 (IBM Maximo Asset Management 7.5 and 7.6 could allow a remote ...)
@@ -26729,7 +26729,7 @@
CVE-2017-1270
RESERVED
CVE-2017-1269 (IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL injection. A ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1268
RESERVED
CVE-2017-1267
@@ -26739,7 +26739,7 @@
CVE-2017-1265
RESERVED
CVE-2017-1264 (IBM Security Guardium 10.0 does not prove or insufficiently proves ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1263
RESERVED
CVE-2017-1262
@@ -26751,17 +26751,17 @@
CVE-2017-1259
RESERVED
CVE-2017-1258 (IBM Security Guardium 10.0 and 10.1 does not perform an authentication ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1257
RESERVED
CVE-2017-1256 (IBM Security Guardium 10.0, 10.1 is vulnerable to cross-site ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1255
RESERVED
CVE-2017-1254 (IBM Security Guardium 10.0 is vulnerable XML External Entity Injection ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1253 (IBM Security Guardium 10.0 could allow a remote authenticated attacker ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1252
RESERVED
CVE-2017-1251
@@ -26833,7 +26833,7 @@
CVE-2017-1218
RESERVED
CVE-2017-1217 (IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1216
RESERVED
CVE-2017-1215
@@ -26851,9 +26851,9 @@
CVE-2017-1209
RESERVED
CVE-2017-1208 (IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1207 (IBM WebSphere Message Broker stores user credentials in plain in clear ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1206
RESERVED
CVE-2017-1205 (IBM Platform LSF 10.1 contains an unspecified vulnerability that could ...)
@@ -26916,9 +26916,9 @@
CVE-2017-1177
RESERVED
CVE-2017-1176 (IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local user ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1175 (IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to SQL ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1174
RESERVED
CVE-2017-1173
@@ -26954,7 +26954,7 @@
CVE-2017-1158
RESERVED
CVE-2017-1157 (IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could allow an ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1156 (IBM WebSphere Portal 8.5 and 9.0 could allow a remote attacker to ...)
NOT-FOR-US: IBM
CVE-2017-1155 (IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could ...)
@@ -26980,7 +26980,7 @@
CVE-2017-1145 (IBM WebSphere MQ 8.0.0.6 does not properly terminate channel agents ...)
NOT-FOR-US: IBM
CVE-2017-1144 (IBM WebSphere Message Broker could allow a local user with specialized ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1143 (IBM Kenexa LCMS Premier on Cloud 9.x and 10.0 could allow a remote ...)
NOT-FOR-US: IBM
CVE-2017-1142 (IBM Kenexa LCMS Premier on Cloud 9.x and 10.0 could allow a remote ...)
@@ -27042,7 +27042,7 @@
CVE-2017-1114
RESERVED
CVE-2017-1113 (IBM Rational Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1112
RESERVED
CVE-2017-1111
@@ -27076,7 +27076,7 @@
CVE-2017-1097
RESERVED
CVE-2017-1096 (IBM Jazz Reporting Service (JRS) 5.0 and 6.0 is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1095
RESERVED
CVE-2017-1094
@@ -27529,7 +27529,7 @@
CVE-2016-9747 (IBM RELM 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This ...)
NOT-FOR-US: IBM
CVE-2016-9746 (IBM Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to cross-site ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-9745
RESERVED
CVE-2016-9744
@@ -27555,7 +27555,7 @@
CVE-2016-9734
RESERVED
CVE-2016-9733 (IBM Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to cross-site ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-9732
RESERVED
CVE-2016-9731 (IBM Business Process Manager is vulnerable to cross-site scripting. ...)
@@ -27619,9 +27619,9 @@
CVE-2016-9702
RESERVED
CVE-2016-9701 (IBM Team Concert 4.0, 5.0 and 6.0 is vulnerable to cross-site ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-9700 (IBM Jazz Foundation could allow an authenticated attacker to obtain ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-9699
RESERVED
CVE-2016-9698 (IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to a denial of ...)
@@ -60621,7 +60621,7 @@
CVE-2016-0239 (IBM Security Guardium Database Activity Monitor 9.x through 9.5 before ...)
NOT-FOR-US: IBM
CVE-2016-0238 (IBM Security Guardium 9.0, 9.1, 9.5, 10.0, and 10.1 transmits ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2016-0237
RESERVED
CVE-2016-0236 (IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x ...)
More information about the Secure-testing-commits
mailing list