[Secure-testing-commits] r53571 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Jul 17 15:49:31 UTC 2017
Author: jmm
Date: 2017-07-17 15:49:31 +0000 (Mon, 17 Jul 2017)
New Revision: 53571
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-17 15:34:44 UTC (rev 53570)
+++ data/CVE/list 2017-07-17 15:49:31 UTC (rev 53571)
@@ -685,7 +685,7 @@
CVE-2017-1000037 (RVM automatically loads environment variables from files in $PWD ...)
TODO: check
CVE-2017-1000036 (All versions of Candy Chat are vulnerable to an XSS attack by message ...)
- TODO: check
+ NOT-FOR-US: Candy Chat
CVE-2017-1000035 (Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener ...)
- tt-rss 17.1+git20170410+dfsg-1
NOTE: https://git.tt-rss.org/git/tt-rss/commit/829d478f1b054c8ce1eeb4f15170dc4a1abb3e47
@@ -746,7 +746,7 @@
CVE-2017-1000007 (txAWS (all current versions) fail to perform complete certificate ...)
NOT-FOR-US: txAWS
CVE-2017-1000006 (Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an ...)
- TODO: check
+ NOT-FOR-US: plotly.js (different from the plotly Python package)
CVE-2017-1000005 (PHPMiniAdmin version 1.9.160630 is vulnerable to stored XSS in the ...)
NOT-FOR-US: PHPMiniAdmin
CVE-2017-1000004 (ATutor versions 2.2.1 and earlier are vulnerable to a SQL injection ...)
More information about the Secure-testing-commits
mailing list