[Secure-testing-commits] r53243 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Jul 7 04:51:25 UTC 2017 

Author: carnil
Date: 2017-07-07 04:51:25 +0000 (Fri, 07 Jul 2017)
New Revision: 53243

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-07 04:42:44 UTC (rev 53242)
+++ data/CVE/list	2017-07-07 04:51:25 UTC (rev 53243)
@@ -3,11 +3,11 @@
 CVE-2017-10976 (When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to ...)
 	TODO: check
 CVE-2017-10975 (Cross-site scripting (XSS) vulnerability in Lutim before 0.8 might ...)
-	TODO: check
+	NOT-FOR-US: Lutim
 CVE-2017-10974
 	RESERVED
 CVE-2017-10973 (In FineCMS before 2017-07-06, application/lib/ajax/get_image_data.php ...)
-	TODO: check
+	NOT-FOR-US: FineCMS
 CVE-2017-10970 (Cross-site scripting (XSS) vulnerability in link.php in Cacti 1.1.12 ...)
 	- cacti <unfixed> (bug #867532)
 	NOTE: https://github.com/Cacti/cacti/issues/838
@@ -73,7 +73,7 @@
 CVE-2017-10968
 	RESERVED
 CVE-2017-10967 (In FineCMS before 2017-07-06, application\core\controller\config.php ...)
-	TODO: check
+	NOT-FOR-US: FineCMS
 CVE-2017-10966
 	RESERVED
 CVE-2017-10965
@@ -6699,7 +6699,7 @@
 CVE-2017-8382 (admidio 3.2.8 has CSRF in ...)
 	NOT-FOR-US: admidio
 CVE-2017-8381 (XnView Classic for Windows Version 2.40 allows user-assisted remote ...)
-	TODO: check
+	NOT-FOR-US: XnView Classic for Windows
 CVE-2017-8380 [scsi: megasas: out-of-bounds read in  megasas_mmio_write]
 	RESERVED
 	- qemu 1:2.8+dfsg-5 (bug #862282)
@@ -7043,7 +7043,7 @@
 	NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=30663fd26c0307e414622c7a8607fbc04f92ec14
 	NOTE: qemu issue without security implication per upstream
 CVE-2017-8282 (XnView Classic for Windows Version 2.40 allows user-assisted remote ...)
-	TODO: check
+	NOT-FOR-US: XnView Classic for Windows
 CVE-2017-8281
 	RESERVED
 CVE-2017-8280
@@ -26984,7 +26984,7 @@
 CVE-2017-1237
 	RESERVED
 CVE-2017-1236 (IBM WebSphere MQ 9.0.2 could allow an authenticated user to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1235
 	RESERVED
 CVE-2017-1234 (IBM QRadar 7.2 and 7.3 is vulnerable to cross-site scripting. This ...)

More information about the Secure-testing-commits mailing list