[Secure-testing-commits] r52795 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Jun 22 03:25:16 UTC 2017 

Author: carnil
Date: 2017-06-22 03:25:16 +0000 (Thu, 22 Jun 2017)
New Revision: 52795

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-22 03:25:07 UTC (rev 52794)
+++ data/CVE/list	2017-06-22 03:25:16 UTC (rev 52795)
@@ -5214,7 +5214,7 @@
 CVE-2017-7923 (A Password in Configuration File issue was discovered in Hikvision ...)
 	NOT-FOR-US: Hikvision
 CVE-2017-7922 (An Improper Privilege Management issue was discovered in Cambium ...)
-	TODO: check
+	NOT-FOR-US: Cambium Networks ePMP
 CVE-2017-7921 (An Improper Authentication issue was discovered in Hikvision ...)
 	NOT-FOR-US: Hikvision
 CVE-2017-7920
@@ -5222,7 +5222,7 @@
 CVE-2017-7919
 	RESERVED
 CVE-2017-7918 (An Improper Access Control issue was discovered in Cambium Networks ...)
-	TODO: check
+	NOT-FOR-US: Cambium Networks ePMP
 CVE-2017-7917 (A Cross-Site Request Forgery issue was discovered in Moxa OnCell ...)
 	NOT-FOR-US: Moxa
 CVE-2017-7916
@@ -10977,13 +10977,13 @@
 CVE-2017-6054 (A Use of Hard-Coded Cryptographic Key issue was discovered in Hyundai ...)
 	NOT-FOR-US: Hyundai
 CVE-2017-6053 (A Cross-Site Scripting issue was discovered in Trihedral VTScada ...)
-	TODO: check
+	NOT-FOR-US: Trihedral VTScada
 CVE-2017-6052 (A Man-in-the-Middle issue was discovered in Hyundai Motor America Blue ...)
 	NOT-FOR-US: Hyundai
 CVE-2017-6051 (An Uncontrolled Search Path Element issue was discovered in BLF-Tech ...)
 	NOT-FOR-US: BLF-Tech LLC VisualView HMI
 CVE-2017-6050 (A SQL Injection issue was discovered in Ecava IntegraXor Versions ...)
-	TODO: check
+	NOT-FOR-US: Ecava IntegraXor
 CVE-2017-6049
 	RESERVED
 CVE-2017-6048 (A Command Injection issue was discovered in Satel Iberia SenNet Data ...)
@@ -10993,11 +10993,11 @@
 CVE-2017-6046
 	RESERVED
 CVE-2017-6045 (An Information Exposure issue was discovered in Trihedral VTScada ...)
-	TODO: check
+	NOT-FOR-US: Trihedral VTScada
 CVE-2017-6044
 	RESERVED
 CVE-2017-6043 (A Resource Consumption issue was discovered in Trihedral VTScada ...)
-	TODO: check
+	NOT-FOR-US: Trihedral VTScada
 CVE-2017-6042
 	RESERVED
 CVE-2017-6041
@@ -14959,11 +14959,11 @@
 CVE-2017-4991 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...)
 	NOT-FOR-US: Cloud Foundry
 CVE-2017-4990 (In EMC Avamar Server Software 7.4.1-58, 7.4.0-242, 7.3.1-125, ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2017-4989 (In EMC Avamar Server Software 7.3.1-125, 7.3.0-233, 7.3.0-226, ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2017-4988 (EMC Isilon OneFS 8.0.1.0, 8.0.0 - 8.0.0.3, 7.2.0 - 7.2.1.4, 7.1.x is ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2017-4987 (In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions ...)
 	NOT-FOR-US: EMC
 CVE-2017-4986 (EMC ESRS VE 3.18 or earlier contains Authentication Bypass that could ...)
@@ -19591,9 +19591,9 @@
 CVE-2017-3220
 	RESERVED
 CVE-2017-3219 (Acronis True Image up to and including version 2017 Build 8053 ...)
-	TODO: check
+	NOT-FOR-US: Acronis True Image
 CVE-2017-3218 (Samsung Magician 5.0 fails to validate TLS certificates for HTTPS ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2017-3217
 	RESERVED
 CVE-2017-3216 (WiMAX routers based on the MediaTek SDK (libmtk) that use a custom ...)
@@ -20691,15 +20691,15 @@
 CVE-2017-2832
 	RESERVED
 CVE-2017-2831 (An exploitable buffer overflow vulnerability exists in the web ...)
-	TODO: check
+	NOT-FOR-US: Foscam C1 Indoor HD Camera
 CVE-2017-2830 (An exploitable buffer overflow vulnerability exists in the web ...)
-	TODO: check
+	NOT-FOR-US: Foscam C1 Indoor HD Camera
 CVE-2017-2829 (An exploitable directory traversal vulnerability exists in the web ...)
-	TODO: check
+	NOT-FOR-US: Foscam C1 Indoor HD Camera
 CVE-2017-2828 (An exploitable command injection vulnerability exists in the web ...)
-	TODO: check
+	NOT-FOR-US: Foscam C1 Indoor HD Camera
 CVE-2017-2827 (An exploitable command injection vulnerability exists in the web ...)
-	TODO: check
+	NOT-FOR-US: Foscam C1 Indoor HD Camera
 CVE-2017-2826
 	RESERVED
 CVE-2017-2825
@@ -20732,7 +20732,7 @@
 CVE-2017-2814
 	RESERVED
 CVE-2017-2813 (An exploitable integer overflow vulnerability exists in the JPEG 2000 ...)
-	TODO: check
+	NOT-FOR-US: IrfanView
 CVE-2017-2812
 	RESERVED
 CVE-2017-2811
@@ -20752,7 +20752,7 @@
 CVE-2017-2806 (An exploitable arbitrary read exists in the XLS parsing of the Lexmark ...)
 	NOT-FOR-US: Lexmark Perspective Document Filters conversion functionality
 CVE-2017-2805 (An exploitable stack-based buffer overflow vulnerability exists in the ...)
-	TODO: check
+	NOT-FOR-US: Foscam C1 Indoor HD Camera
 CVE-2017-2804
 	RESERVED
 CVE-2017-2803
@@ -24035,7 +24035,7 @@
 CVE-2017-1305 (IBM DOORS Next Generation (DNG/RRC) 6.0.2 and 6.0.3 is vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2017-1304 (IBM has identified a vulnerability with IBM Spectrum Scale/GPFS ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1303
 	RESERVED
 CVE-2017-1302
@@ -24410,7 +24410,7 @@
 CVE-2017-1118
 	RESERVED
 CVE-2017-1117 (IBM WebSphere MQ 8.0 and 9.0 could allow an authenticated user to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1116
 	RESERVED
 CVE-2017-1115
@@ -29533,7 +29533,7 @@
 CVE-2016-8732
 	RESERVED
 CVE-2016-8731 (Hard-coded FTP credentials (r:r) are included in the Foscam C1 running ...)
-	TODO: check
+	NOT-FOR-US: Foscam C1
 CVE-2016-8730
 	RESERVED
 CVE-2016-8729

More information about the Secure-testing-commits mailing list