[Secure-testing-commits] r53052 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jun 30 20:34:02 UTC 2017
Author: carnil
Date: 2017-06-30 20:34:02 +0000 (Fri, 30 Jun 2017)
New Revision: 53052
Modified:
data/CVE/list
Log:
Process some NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-30 20:21:19 UTC (rev 53051)
+++ data/CVE/list 2017-06-30 20:34:02 UTC (rev 53052)
@@ -7255,21 +7255,21 @@
CVE-2017-7906
RESERVED
CVE-2017-7905 (A Weak Cryptography for Passwords issue was discovered in General ...)
- TODO: check
+ NOT-FOR-US: General Electric
CVE-2017-7904
RESERVED
CVE-2017-7903 (A Weak Password Requirements issue was discovered in Rockwell ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation
CVE-2017-7902 (A "Reusing a Nonce, Key Pair in Encryption" issue was discovered in ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation
CVE-2017-7901 (A Predictable Value Range from Previous Values issue was discovered in ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation
CVE-2017-7900
RESERVED
CVE-2017-7899 (An Information Exposure issue was discovered in Rockwell Automation ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation
CVE-2017-7898 (An Improper Restriction of Excessive Authentication Attempts issue was ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation
CVE-2017-7897 (A cross-site scripting (XSS) vulnerability in the MantisBT (2.3.x ...)
- mantis <removed>
[wheezy] - mantis <end-of-life> (Unsupported in Wheezy LTS)
@@ -13044,7 +13044,7 @@
CVE-2017-6042 (A Cross-Site Request Forgery issue was discovered in Sierra Wireless ...)
NOT-FOR-US: Sierra Wireless AirLink Raven
CVE-2017-6041 (An Unrestricted Upload issue was discovered in Marel Food Processing ...)
- TODO: check
+ NOT-FOR-US: Marel
CVE-2017-6040 (An Information Exposure issue was discovered in Belden Hirschmann GECKO ...)
NOT-FOR-US: Belden Hirschmann GECKO Lite Managed switch
CVE-2017-6039 (A Use of Hard-Coded Password issue was discovered in Phoenix Broadband ...)
@@ -13082,7 +13082,7 @@
CVE-2017-6023 (An issue was discovered in Fatek Automation PLC Ethernet Module. The ...)
NOT-FOR-US: Fatek
CVE-2017-6022 (A hard-coded password issue was discovered in Becton, Dickinson and ...)
- TODO: check
+ NOT-FOR-US: BD's Kiestra PerformA and KLA Journal Service applications
CVE-2017-6021
RESERVED
CVE-2017-6020
@@ -13090,7 +13090,7 @@
CVE-2017-6019 (An issue was discovered in Schneider Electric Conext ComBox, model ...)
NOT-FOR-US: Schneider Electric
CVE-2017-6018 (An open redirect issue was discovered in B. Braun Medical SpaceCom ...)
- TODO: check
+ NOT-FOR-US: SpaceCom / SpaceStation
CVE-2017-6017 (A Resource Exhaustion issue was discovered in Schneider Electric ...)
NOT-FOR-US: Schneider Electric
CVE-2017-6016 (An Improper Access Control issue was discovered in LCDS - Leao ...)
@@ -29591,7 +29591,7 @@
CVE-2016-9359
REJECTED
CVE-2016-9358 (A Hard-Coded Passwords issue was discovered in Marel Food Processing ...)
- TODO: check
+ NOT-FOR-US: Marel
CVE-2016-9357 (An issue was discovered in certain legacy Eaton ePDUs -- the affected ...)
NOT-FOR-US: legacy Eaton ePDUs
CVE-2016-9356 (An issue was discovered in Moxa DACenter Versions 1.4 and older. The ...)
More information about the Secure-testing-commits
mailing list