[Secure-testing-commits] r53632 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Tue Jul 18 21:44:10 UTC 2017


Author: jmm
Date: 2017-07-18 21:44:10 +0000 (Tue, 18 Jul 2017)
New Revision: 53632

Modified:
   data/CVE/list
Log:
new apport issue
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-18 21:33:09 UTC (rev 53631)
+++ data/CVE/list	2017-07-18 21:44:10 UTC (rev 53632)
@@ -1459,9 +1459,9 @@
 CVE-2017-10963
 	RESERVED
 CVE-2017-10962 (REDCap before 7.5.1 has XSS via the query string. ...)
-	TODO: check
+	NOT-FOR-US: REDCap
 CVE-2017-10961 (REDCap before 7.5.1 has CSRF in the deletion feature of the File ...)
-	TODO: check
+	NOT-FOR-US: REDCap
 CVE-2017-10960
 	RESERVED
 CVE-2017-10959
@@ -1987,7 +1987,8 @@
 CVE-2017-10709 (The lockscreen on Elephone P9000 devices (running Android 6.0) allows ...)
 	NOT-FOR-US: Elephone P9000 devices
 CVE-2017-10708 (An issue was discovered in Apport through 2.20.x. In apport/report.py, ...)
-	TODO: check
+	[experimental] - apport <unfixed>
+	NOTE: apport only in experimental, so we cannot track this in security-tracker
 CVE-2017-10707
 	RESERVED
 CVE-2017-10706 (When Antiy Antivirus Engine before 5.0.0.05171547 scans a special ZIP ...)




More information about the Secure-testing-commits mailing list