[Secure-testing-commits] r53757 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Jul 21 21:29:09 UTC 2017 

Author: jmm
Date: 2017-07-21 21:29:08 +0000 (Fri, 21 Jul 2017)
New Revision: 53757

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-21 21:10:17 UTC (rev 53756)
+++ data/CVE/list	2017-07-21 21:29:08 UTC (rev 53757)
@@ -1,9 +1,9 @@
 CVE-2017-11518
 	RESERVED
 CVE-2017-11517 (Stack-based buffer overflow in GCoreServer.exe in the server in ...)
-	TODO: check
+	NOT-FOR-US: Geutebrueck Gcore
 CVE-2017-11516 (An XSS vulnerability exists in ...)
-	TODO: check
+	NOT-FOR-US: Yii Framework
 CVE-2017-11515
 	RESERVED
 CVE-2017-11514
@@ -2563,7 +2563,7 @@
 CVE-2017-9981
 	RESERVED
 CVE-2017-9980 (In Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, the ...)
-	TODO: check
+	NOT-FOR-US: Green Packet
 CVE-2017-9979
 	RESERVED
 CVE-2017-9978
@@ -2691,11 +2691,11 @@
 CVE-2017-9933 (Improper cache invalidation in Joomla! CMS 1.7.3 through 3.7.2 leads ...)
 	NOT-FOR-US: Joomla
 CVE-2017-9932 (Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb has a ...)
-	TODO: check
+	NOT-FOR-US: Green Packet
 CVE-2017-9931 (Cross-Site Scripting (XSS) exists in Green Packet DX-350 Firmware ...)
-	TODO: check
+	NOT-FOR-US: Green Packet
 CVE-2017-9930 (Cross-Site Request Forgery (CSRF) exists in Green Packet DX-350 ...)
-	TODO: check
+	NOT-FOR-US: Green Packet
 CVE-2017-9929 (In lrzip 0.631, a stack buffer overflow was found in the function ...)
 	- lrzip <unfixed> (bug #866020)
 	[stretch] - lrzip <no-dsa> (Minor issue)
@@ -2962,7 +2962,7 @@
 CVE-2017-9823
 	RESERVED
 CVE-2017-9822 (DNN (aka DotNetNuke) before 9.1.1 has Remote Code Execution via a ...)
-	TODO: check
+	NOT-FOR-US: DotNetNuke
 CVE-2017-9821
 	RESERVED
 CVE-2017-9820
@@ -3057,7 +3057,7 @@
 CVE-2017-9786
 	RESERVED
 CVE-2017-9785 (Csrf.cs in NancyFX Nancy before 1.4.4 and 2.x before 2.0-dangermouse ...)
-	TODO: check
+	NOT-FOR-US: NancyFX Nancy
 CVE-2017-9784
 	RESERVED
 CVE-2017-9783
@@ -5533,7 +5533,7 @@
 CVE-2017-9416 (Directory traversal vulnerability in tools.file_open in Odoo 8.0, 9.0, ...)
 	NOT-FOR-US: Odoo
 CVE-2017-9415 (Cross-site request forgery (CSRF) vulnerability in subsonic 6.1.1 ...)
-	TODO: check
+	NOT-FOR-US: Subsonic
 CVE-2017-9414
 	RESERVED
 CVE-2017-9413
@@ -12852,11 +12852,11 @@
 CVE-2017-7070
 	RESERVED
 CVE-2017-7069 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7068 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7067 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7066
 	RESERVED
 CVE-2017-7065
@@ -12864,17 +12864,17 @@
 CVE-2017-7064 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7063 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7062 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7061 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7060 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7059 (A DOMParser XSS issue was discovered in certain Apple products. iOS ...)
 	TODO: check
 CVE-2017-7058 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7057
 	RESERVED
 CVE-2017-7056 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
@@ -12882,27 +12882,27 @@
 CVE-2017-7055 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7054 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7053 (An issue was discovered in certain Apple products. iTunes before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7052 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7051 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7050 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7049 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7048 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7047 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7046 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7045 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7044 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7043 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7042 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
@@ -12918,37 +12918,37 @@
 CVE-2017-7037 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7036 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7035 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7034 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7033 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7032 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7031 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7030 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7029 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7028 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7027 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7026 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7025 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7024 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7023 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7022 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7021 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7020 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7019 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
@@ -12956,13 +12956,13 @@
 CVE-2017-7018 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7017 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7016 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7015 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7014 (An issue was discovered in certain Apple products. macOS before ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7013 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7012 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
@@ -12972,11 +12972,11 @@
 CVE-2017-7010 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7009 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7008 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7007 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2017-7006 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
 	TODO: check
 CVE-2017-7005
@@ -14093,11 +14093,11 @@
 CVE-2017-6533 (A Cross-Site Scripting (XSS) issue was discovered in webpagetest 3.0. ...)
 	NOT-FOR-US: webpagetest
 CVE-2017-6532 (Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20 ...)
-	TODO: check
+	NOT-FOR-US: Televes COAXDATA GATEWAY
 CVE-2017-6531 (On Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20, ...)
-	TODO: check
+	NOT-FOR-US: Televes COAXDATA GATEWAY
 CVE-2017-6530 (Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20 do ...)
-	TODO: check
+	NOT-FOR-US: Televes COAXDATA GATEWAY
 CVE-2017-6529 (An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is ...)
 	NOT-FOR-US: dnaLIMS
 CVE-2017-6528 (An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is ...)
@@ -26294,7 +26294,7 @@
 	NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=199
 	NOTE: https://clusterfuzz-external.appspot.com/testcase?key=4603622180519936
 CVE-2017-2517 (An issue was discovered in certain Apple products. iOS before 10.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari
 CVE-2017-2516 (An issue was discovered in certain Apple products. macOS before ...)
 	NOT-FOR-US: Apple
 CVE-2017-2515 (An issue was discovered in certain Apple products. iOS before 10.3.2 ...)
@@ -28627,7 +28627,7 @@
 CVE-2017-1382
 	RESERVED
 CVE-2017-1381 (IBM WebSphere Application Server Proxy Server or On-demand-router ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1380
 	RESERVED
 CVE-2017-1379 (IBM API Connect 5.0.0.0 could allow a remote attacker to obtain ...)
@@ -28641,13 +28641,13 @@
 CVE-2017-1375
 	RESERVED
 CVE-2017-1374 (Sensitive data can be exposed in the IBM TRIRIGA Application Platform ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1373 (Reports executed in the IBM TRIRIGA Application Platform 3.3, 3.4, and ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1372 (IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1371 (Builder tools running in the IBM TRIRIGA Application Platform 3.3, ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1370
 	RESERVED
 CVE-2017-1369
@@ -28855,7 +28855,7 @@
 CVE-2017-1268
 	RESERVED
 CVE-2017-1267 (IBM Security Guardium 10.0 and 10.1 processes patches, image backups ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1266
 	RESERVED
 CVE-2017-1265
@@ -74399,7 +74399,7 @@
 	NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=2cc4e69cc6d8dbc4b3568ad3dd583324a7c11d64
 	NOTE: http://www.openwall.com/lists/oss-security/2015/06/18/3
 CVE-2015-4639 (Multiple cross-site request forgery (CSRF) vulnerabilities in Koha ...)
-	TODO: check
+	NOT-FOR-US: Koha
 CVE-2015-4638 (The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ...)
 	NOT-FOR-US: FastL4
 CVE-2015-4637 (The REST API in F5 BIG-IQ Cloud, Device, and Security 4.4.0 and 4.5.0 ...)
@@ -76349,9 +76349,9 @@
 CVE-2015-3933
 	RESERVED
 CVE-2015-3932 (Netlock Mokka before 2.7.8.1204 allows remote attackers to perform XML ...)
-	TODO: check
+	NOT-FOR-US: Netlock Mokka
 CVE-2015-3931 (Microsec e-Szigno before 3.2.7.12 allows remote attackers to perform ...)
-	TODO: check
+	NOT-FOR-US: Microsec e-Szigno
 CVE-2015-3930
 	RESERVED
 CVE-2015-3929
@@ -77183,11 +77183,11 @@
 CVE-2015-3641
 	RESERVED
 CVE-2015-3640 (phpMyBackupPro 2.5 and earlier does not properly escape the "." ...)
-	TODO: check
+	NOT-FOR-US: phpMyBackupPro
 CVE-2015-3639 (phpMyBackupPro 2.5 and earlier does not properly sanitize input ...)
-	TODO: check
+	NOT-FOR-US: phpMyBackupPro
 CVE-2015-3638 (phpMyBackupPro before 2.5 does not validate integer input, which ...)
-	TODO: check
+	NOT-FOR-US: phpMyBackupPro
 CVE-2015-3637
 	RESERVED
 CVE-2015-3635

More information about the Secure-testing-commits mailing list