[Secure-testing-commits] r49921 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Mar 22 05:58:30 UTC 2017 

Author: carnil
Date: 2017-03-22 05:58:30 +0000 (Wed, 22 Mar 2017)
New Revision: 49921

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-22 05:53:08 UTC (rev 49920)
+++ data/CVE/list	2017-03-22 05:58:30 UTC (rev 49921)
@@ -1987,7 +1987,7 @@
 CVE-2017-6418
 	RESERVED
 CVE-2017-6417 (Code injection vulnerability in Avira Total Security Suite 15.0 (and ...)
-	TODO: check
+	NOT-FOR-US: Avira Total Security Suite
 CVE-2017-6416 (An issue was discovered in SysGauge 1.5.18. A buffer overflow ...)
 	NOT-FOR-US: SysGauge
 CVE-2017-6415 (The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 ...)
@@ -2599,7 +2599,7 @@
 CVE-2017-6187 (Buffer overflow in the built-in web server in DiskSavvy Enterprise ...)
 	NOT-FOR-US: DiskSavvy Enterprise
 CVE-2017-6186 (Code injection vulnerability in Bitdefender Total Security 12.0 (and ...)
-	TODO: check
+	NOT-FOR-US: Bitdefender
 CVE-2017-6185
 	RESERVED
 CVE-2017-6184
@@ -4511,11 +4511,11 @@
 CVE-2017-5568
 	RESERVED
 CVE-2017-5567 (Code injection vulnerability in Avast Premier 12.3 (and earlier), ...)
-	TODO: check
+	NOT-FOR-US: Avast
 CVE-2017-5566 (Code injection vulnerability in AVG Ultimate 17.1 (and earlier), AVG ...)
-	TODO: check
+	NOT-FOR-US: AVG
 CVE-2017-5565 (Code injection vulnerability in Trend Micro Maximum Security 11.0 (and ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2017-5564
 	RESERVED
 CVE-2017-5563 (LibTIFF version 4.0.7 is vulnerable to a heap-based buffer over-read in ...)
@@ -8952,9 +8952,9 @@
 CVE-2017-3851
 	RESERVED
 CVE-2017-3850 (A vulnerability in the Autonomic Networking Infrastructure (ANI) ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-3849 (A vulnerability in the Autonomic Networking Infrastructure (ANI) ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-3848
 	RESERVED
 CVE-2017-3847 (A vulnerability in the web framework of Cisco Firepower Management ...)
@@ -27421,7 +27421,7 @@
 CVE-2016-6651 (The UAA /oauth/token endpoint in Pivotal Cloud Foundry (PCF) before ...)
 	NOT-FOR-US: Pivotal
 CVE-2016-6650 (EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2016-6649 (EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for ...)
 	NOT-FOR-US: EMC
 CVE-2016-6648 (EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for ...)
@@ -35240,7 +35240,7 @@
 CVE-2016-4505 (Resource Data Management (RDM) Intuitive 650 TDB Controller devices ...)
 	NOT-FOR-US: Resource Data Management
 CVE-2016-4504 (A Cross-Site Request Forgery issue was discovered in Meteocontrol ...)
-	TODO: check
+	NOT-FOR-US: Meteocontrol WEB'log
 CVE-2016-4503 (Moxa Device Server Web Console 5232-N allows remote attackers to ...)
 	NOT-FOR-US: Moxa
 CVE-2016-4502 (Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and ...)

More information about the Secure-testing-commits mailing list