[Secure-testing-commits] r54025 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Jul 28 12:19:29 UTC 2017 

Author: jmm
Date: 2017-07-28 12:19:29 +0000 (Fri, 28 Jul 2017)
New Revision: 54025

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-28 11:04:44 UTC (rev 54024)
+++ data/CVE/list	2017-07-28 12:19:29 UTC (rev 54025)
@@ -64,7 +64,7 @@
 CVE-2017-11692
 	RESERVED
 CVE-2016-10402 (Avira Antivirus engine versions before 8.3.36.60 allow remote code ...)
-	TODO: check
+	NOT-FOR-US: Avira
 CVE-2017-11690
 	RESERVED
 CVE-2017-11689
@@ -72,11 +72,11 @@
 CVE-2017-11688
 	RESERVED
 CVE-2017-11687 (Multiple Persistent cross-site scripting (XSS) vulnerabilities in Event ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Event Log Analyzer
 CVE-2017-11686 (Zoho ManageEngine Event Log Analyzer 11.4 and 11.5 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Event Log Analyzer
 CVE-2017-11685 (Multiple Reflective cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Event Log Analyzer
 CVE-2017-11684 (There is an illegal address access in the build_table function in ...)
 	TODO: check
 CVE-2017-11683 (There is a reachable assertion in the ...)
@@ -84,17 +84,17 @@
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1475124
 	TODO: check
 CVE-2017-11682 (Stored Cross-site scripting vulnerability in Hashtopussy 0.4.0 allows ...)
-	TODO: check
+	NOT-FOR-US: Hashtopussy
 CVE-2017-11681 (Incorrect Access Control vulnerability in Hashtopussy 0.4.0 allows ...)
-	TODO: check
+	NOT-FOR-US: Hashtopussy
 CVE-2017-11680 (Cross-Site Request Forgery (CSRF) exists in Hashtopussy 0.4.0, allowing ...)
-	TODO: check
+	NOT-FOR-US: Hashtopussy
 CVE-2017-11679 (Cross-Site Request Forgery (CSRF) exists in Hashtopus 1.5g via the ...)
-	TODO: check
+	NOT-FOR-US: Hashtopus
 CVE-2017-11678 (SQL injection vulnerability in Hashtopus 1.5g allows remote ...)
-	TODO: check
+	NOT-FOR-US: Hashtopus
 CVE-2017-11677 (Cross-site scripting (XSS) vulnerability in Hashtopus 1.5g allows ...)
-	TODO: check
+	NOT-FOR-US: Hashtopus
 CVE-2017-11676
 	RESERVED
 CVE-2017-11675 (The traverseStrictSanitize function in ...)

More information about the Secure-testing-commits mailing list