[Secure-testing-commits] r53570 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Jul 17 15:34:44 UTC 2017
Author: jmm
Date: 2017-07-17 15:34:44 +0000 (Mon, 17 Jul 2017)
New Revision: 53570
Modified:
data/CVE/list
Log:
audacity n/a
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-17 12:25:55 UTC (rev 53569)
+++ data/CVE/list 2017-07-17 15:34:44 UTC (rev 53570)
@@ -736,19 +736,19 @@
CVE-2017-1000012 (MySQL Dumper version 1.24 is vulnerable to stored XSS when displaying ...)
TODO: check
CVE-2017-1000011 (MyWebSQL version 3.6 is vulnerable to stored XSS in the database ...)
- TODO: check
+ NOT-FOR-US: MyWebSQL
CVE-2017-1000010 (Audacity version 2.1.2 is vulnerable to Dll HIjacking in the ...)
- TODO: check
+ - audacity <not-affected> (Specific to Windows packaging)
CVE-2017-1000009 (Akeneo PIM CE and EE <1.6.6, <1.5.15, <1.4.28 are vulnerable to shell ...)
- TODO: check
+ NOT-FOR-US: Akeneo PIM
CVE-2017-1000008 (Chyrp Lite version 2016.04 is vulnerable to a CSRF in the user ...)
- TODO: check
+ NOT-FOR-US: Chyrp Lite
CVE-2017-1000007 (txAWS (all current versions) fail to perform complete certificate ...)
- TODO: check
+ NOT-FOR-US: txAWS
CVE-2017-1000006 (Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an ...)
TODO: check
CVE-2017-1000005 (PHPMiniAdmin version 1.9.160630 is vulnerable to stored XSS in the ...)
- TODO: check
+ NOT-FOR-US: PHPMiniAdmin
CVE-2017-1000004 (ATutor versions 2.2.1 and earlier are vulnerable to a SQL injection ...)
NOT-FOR-US: ATutor
CVE-2017-1000003 (ATutor versions 2.2.1 and earlier are vulnerable to a incorrect access ...)
More information about the Secure-testing-commits
mailing list