[Secure-testing-commits] r49791 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sun Mar 19 12:44:05 UTC 2017 

Author: jmm
Date: 2017-03-19 12:44:05 +0000 (Sun, 19 Mar 2017)
New Revision: 49791

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-19 12:39:19 UTC (rev 49790)
+++ data/CVE/list	2017-03-19 12:44:05 UTC (rev 49791)
@@ -37391,7 +37391,7 @@
 CVE-2016-3745 (Multiple buffer overflows in mediaserver in Android 4.x before 4.4.4, ...)
 	NOT-FOR-US: Android Mediaserver
 CVE-2016-3744 (Buffer overflow in the create_pbuf function in btif/src/btif_hh.c in ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2016-3743 (decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-07-01 ...)
 	NOT-FOR-US: Android Mediaserver
 CVE-2016-3742 (decoder/ih264d_process_intra_mb.c in mediaserver in Android 6.x before ...)
@@ -38949,17 +38949,17 @@
 	NOTE: https://bugs.php.net/bug.php?id=67996
 	NOTE: https://github.com/facebook/hhvm/commit/65c95a01541dd2fbc9c978ac53bed235b5376686
 CVE-2016-3152 (Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow ...)
-	TODO: check
+	NOT-FOR-US: Barco ClickShare
 CVE-2016-3151 (Directory traversal vulnerability in the wallpaper parsing ...)
-	TODO: check
+	NOT-FOR-US: Barco ClickShare
 CVE-2016-3150 (Cross-site scripting (XSS) vulnerability in wallpaper.php in the Base ...)
-	TODO: check
+	NOT-FOR-US: Barco ClickShare
 CVE-2016-3149 (Barco ClickShare CSC-1 devices with firmware before 01.09.03 and CSM-1 ...)
-	TODO: check
+	NOT-FOR-US: Barco ClickShare
 CVE-2016-3148
 	RESERVED
 CVE-2016-3147 (Buffer overflow in the collector.exe listener of the Landesk ...)
-	TODO: check
+	NOT-FOR-US: Landesk Management Suite
 CVE-2016-3146
 	RESERVED
 CVE-2016-3145 (Lexmark printers with firmware ATL before ATL.021.063, CB before ...)
@@ -57756,7 +57756,7 @@
 	NOTE: http://extplorer.net/news/18
 	NOTE: http://extplorer.net/projects/extplorer/repository/diff?utf8=%E2%9C%93&rev=242&rev_to=241
 CVE-2015-5659 (SQL injection vulnerability in Network Applied Communication ...)
-	TODO: check
+	NOT-FOR-US: Network Applied Communication Laboratory Pref Shimane CMS
 CVE-2015-5658
 	RESERVED
 CVE-2015-5657
@@ -57764,18 +57764,18 @@
 CVE-2015-5656
 	RESERVED
 CVE-2015-5655 (The Adways Party Track SDK before 1.6.6 for iOS does not verify X.509 ...)
-	TODO: check
+	NOT-FOR-US: Adways Party Track SDK
 CVE-2015-5654 (Cross-site scripting (XSS) vulnerability in Dojo Toolkit before 1.2 ...)
 	- dojo <not-affected> (Fixed before the first version in Debian)
 CVE-2015-5653 (Buffer overflow in Canary Labs Trend Web Server before 9.5.2 allows ...)
-	TODO: check
+	NOT-FOR-US: Canary Labs Trend Web Server
 CVE-2015-5652 (Untrusted search path vulnerability in python.exe in Python through ...)
 	NOT-FOR-US: Python on Windows
 CVE-2015-5651 (Cross-site scripting (XSS) vulnerability in Dotclear before 2.8.1 ...)
 	- dotclear <removed> (bug #815979)
 	NOTE: http://dotclear.org/blog/post/2015/09/23/Dotclear-2.8.1
 CVE-2015-5650 (Directory traversal vulnerability in AjaXplorer 2.0 allows remote ...)
-	TODO: check
+	NOT-FOR-US: AjaXplorer
 CVE-2015-5649 (Cybozu Garoon 3.x through 3.7.5 and 4.x through 4.0.3 mishandles ...)
 	NOT-FOR-US: Cybozu Garoon
 CVE-2015-5648 (SQL injection vulnerability in list.php in phpRechnung before 1.6.5 ...)

More information about the Secure-testing-commits mailing list