[Secure-testing-commits] r49882 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Tue Mar 21 12:42:08 UTC 2017 

Author: jmm
Date: 2017-03-21 12:42:08 +0000 (Tue, 21 Mar 2017)
New Revision: 49882

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-21 11:52:48 UTC (rev 49881)
+++ data/CVE/list	2017-03-21 12:42:08 UTC (rev 49882)
@@ -26,14 +26,14 @@
 	NOTE: https://bugzilla.libav.org/show_bug.cgi?id=1002
 	NOTE: https://git.libav.org/?p=libav.git;a=commit;h=83b2b34d06e74cc8775ba3d833f9782505e17539
 CVE-2017-7205 (A Cross-Site Scripting (XSS) was discovered in GamePanelX-V3 3.0.12. ...)
-	TODO: check
+	NOT-FOR-US: GamePanelX-V3
 CVE-2017-7204 (A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The ...)
-	TODO: check
+	NOT-FOR-US: imdbphp
 CVE-2017-7203 (A Cross-Site Scripting (XSS) was discovered in ZoneMinder 1.30.2. The ...)
 	- zoneminder <unfixed> (bug #858329)
 	NOTE:  https://github.com/ZoneMinder/ZoneMinder/issues/1797
 CVE-2017-7202 (Multiple Cross-Site Scripting (XSS) were discovered in SLiMS 7 Cendana ...)
-	TODO: check
+	NOT-FOR-US: SLiMS
 CVE-2017-7201
 	RESERVED
 CVE-2017-7199
@@ -916,11 +916,11 @@
 CVE-2017-6806
 	RESERVED
 CVE-2017-6805 (Directory traversal vulnerability in the TFTP server in MobaXterm ...)
-	TODO: check
+	NOT-FOR-US: MobaXterm
 CVE-2017-6804
 	REJECTED
 CVE-2017-6803 (Multiple cross-site request forgery (CSRF) vulnerabilities in the web ...)
-	TODO: check
+	NOT-FOR-US: SolarWinds (formerly Serv-U) FTP Voyager
 CVE-2017-6798 (Trend Micro Endpoint Sensor 1.6 before b1290 has a DLL hijacking ...)
 	NOT-FOR-US: Trend Micro Endpoint Sensor
 CVE-2017-6802 (An issue was discovered in ytnef before 1.9.2. There is a potential ...)
@@ -1440,7 +1440,7 @@
 CVE-2017-6551
 	RESERVED
 CVE-2017-6550 (Multiple SQL injection vulnerabilities in Kinsey Infor-Lawson ...)
-	TODO: check
+	NOT-FOR-US: Kinsey Infor-Lawson
 CVE-2017-6549 (Session hijack vulnerability in httpd in ASUS ASUSWRT on RT-AC53 ...)
 	NOT-FOR-US: ASUS
 CVE-2017-6548 (Buffer overflows in networkmap in ASUS ASUSWRT on RT-AC53 ...)
@@ -2112,7 +2112,7 @@
 CVE-2017-6357
 	RESERVED
 CVE-2017-6356 (Palo Alto Networks Terminal Services (aka TS) Agent 6.0, 7.0, and 8.0 ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks Terminal Services
 CVE-2015-8994 (An issue was discovered in PHP 5.x and 7.x, when the configuration ...)
 	- php7.1 <not-affected> (Fixed before initial upload to Debian)
 	- php7.0 7.0.14-1
@@ -2597,7 +2597,7 @@
 CVE-2017-6179
 	RESERVED
 CVE-2017-6178 (The IofCallDriver function in USBPcap 1.1.0.0 allows local users to ...)
-	TODO: check
+	NOT-FOR-US: USBPcap
 CVE-2017-6177
 	RESERVED
 CVE-2017-6176

More information about the Secure-testing-commits mailing list