[Secure-testing-commits] r52998 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Jun 29 05:15:47 UTC 2017 

Author: carnil
Date: 2017-06-29 05:15:46 +0000 (Thu, 29 Jun 2017)
New Revision: 52998

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-29 05:01:16 UTC (rev 52997)
+++ data/CVE/list	2017-06-29 05:15:46 UTC (rev 52998)
@@ -8040,7 +8040,7 @@
 CVE-2017-7687
 	RESERVED
 CVE-2017-7686 (Apache Ignite 1.0.0-RC3 to 2.0 uses an update notifier component to ...)
-	TODO: check
+	NOT-FOR-US: Apache Ignite
 CVE-2017-7685
 	RESERVED
 CVE-2017-7684
@@ -15957,7 +15957,7 @@
 CVE-2017-5242
 	RESERVED
 CVE-2017-5241 (Biscom Secure File Transfer version 5.1.1015 (and possibly prior) is ...)
-	TODO: check
+	NOT-FOR-US: Biscom Secure File Transfer
 CVE-2017-5240 (Editions of Rapid7 AppSpider Pro prior to version 6.14.060 contain a ...)
 	NOT-FOR-US: Rapid7 AppSpider Pro
 CVE-2017-5239 (Due to a lack of standard encryption when transmitting sensitive ...)
@@ -23558,7 +23558,7 @@
 CVE-2017-2492
 	RESERVED
 CVE-2017-2491 (Use after free vulnerability in the String.replace method ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari
 CVE-2017-2490 (An issue was discovered in certain Apple products. iOS before 10.3 is ...)
 	NOT-FOR-US: Apple involving Kernel component
 CVE-2017-2489 (An issue was discovered in certain Apple products. macOS before ...)
@@ -26378,7 +26378,7 @@
 CVE-2017-1107
 	RESERVED
 CVE-2017-1106 (IBM Curam Social Program Management 5.2, 6.0, and 7.0 is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1105 (IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 ...)
 	NOT-FOR-US: IBM
 CVE-2017-1104 (IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 is vulnerable to ...)
@@ -63333,7 +63333,7 @@
 CVE-2015-7583
 	REJECTED
 CVE-2015-7582 (Satellite 6.1.0 allows remote authenticated users to read ...)
-	TODO: check
+	NOT-FOR-US: Red Hat Satellite
 CVE-2015-7581 (actionpack/lib/action_dispatch/routing/route_set.rb in Action Pack in ...)
 	{DSA-3464-1}
 	- rails 2:4.2.5.1-1
@@ -73741,7 +73741,7 @@
 CVE-2015-3841
 	RESERVED
 CVE-2015-3840 (The MessageStatusReceiver service in the AndroidManifest.XML in ...)
-	TODO: check
+	NOT-FOR-US: MessageStatusReceiver in Android
 CVE-2015-3839
 	RESERVED
 CVE-2015-3838
@@ -78772,7 +78772,7 @@
 CVE-2015-2246 (The MeWidget module on Huawei P7 smartphones with software P7-L10 ...)
 	NOT-FOR-US: Huawei
 CVE-2015-2245 (Huawei Ascend P7 allows remote attackers to cause a denial of service ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2015-2244 (Multiple cross-site scripting (XSS) vulnerabilities in Webshop hun ...)
 	NOT-FOR-US: Webshop hun
 CVE-2015-2243 (Directory traversal vulnerability in Webshop hun 1.062S allows remote ...)
@@ -89938,7 +89938,7 @@
 	- curl 7.38.0-4
 	NOTE: http://curl.haxx.se/docs/adv_20150108B.html
 CVE-2014-8149 (OpenDaylight defense4all 1.1.0 and earlier allows remote authenticated ...)
-	TODO: check
+	NOT-FOR-US: OpenDaylight
 CVE-2014-8148 (The default D-Bus access control rule in Midgard2 10.05.7.1 allows ...)
 	- midgard2-core <removed> (bug #774630)
 CVE-2014-8147 (The resolveImplicitLevels function in common/ubidi.c in the Unicode ...)
@@ -134772,7 +134772,7 @@
 CVE-2012-5011
 	RESERVED
 CVE-2012-5010 (ASA 5515-X Adaptive Security Appliance Adaptive Security Appliance ...)
-	TODO: check
+	NOT-FOR-US: Adaptive Security Appliance Adaptive Security Appliance (ASA)
 CVE-2012-5009
 	RESERVED
 CVE-2012-5008

More information about the Secure-testing-commits mailing list