[Secure-testing-commits] r50210 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Mar 31 04:34:58 UTC 2017 

Author: carnil
Date: 2017-03-31 04:34:57 +0000 (Fri, 31 Mar 2017)
New Revision: 50210

Modified:
   data/CVE/list
Log:
Update some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-30 21:10:15 UTC (rev 50209)
+++ data/CVE/list	2017-03-31 04:34:57 UTC (rev 50210)
@@ -427,7 +427,7 @@
 CVE-2017-7254
 	RESERVED
 CVE-2017-7253 (Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: ...)
-	TODO: check
+	NOT-FOR-US: Dahua IP Camera devices
 CVE-2017-7252
 	RESERVED
 CVE-2017-7251 (A Cross-Site Scripting (XSS) was discovered in pi-engine/pi 2.5.0. The ...)
@@ -2663,7 +2663,7 @@
 	- libapache2-mod-auth-openidc 2.1.6-1
 	NOTE: https://github.com/pingidentity/mod_auth_openidc/commit/21e3728a825c41ab41efa75e664108051bb9665e
 CVE-2017-6412 (In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2017-6411 (Cross Site Request Forgery (CSRF) on D-Link DSL-2730U C1 IN_1.00 ...)
 	NOT-FOR-US: D-Link
 CVE-2017-6410 (kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls ...)
@@ -3281,11 +3281,11 @@
 CVE-2017-6185
 	RESERVED
 CVE-2017-6184 (In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2017-6183 (In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2017-6182 (In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2017-6181
 	RESERVED
 CVE-2017-6180 (Keekoon KK002 devices 1.8.12 HD have a Cross Site Request Forgery ...)
@@ -6540,9 +6540,9 @@
 CVE-2017-5186
 	RESERVED
 CVE-2017-5185 (A vulnerability was discovered in NetIQ Sentinel Server 8.0 before ...)
-	TODO: check
+	NOT-FOR-US: NetIQ Sentinel
 CVE-2017-5184 (A vulnerability was discovered in NetIQ Sentinel Server 8.0 before ...)
-	TODO: check
+	NOT-FOR-US: NetIQ Sentinel
 CVE-2017-5183
 	RESERVED
 CVE-2017-5182 (Remote Manager in Open Enterprise Server (OES) allows unauthenticated ...)
@@ -25463,9 +25463,9 @@
 	NOTE: Wheezy are affected.
 	NOTE: Fixed by (4.3): https://ftp.gnu.org/pub/gnu/bash/bash-4.3-patches/bash43-048
 CVE-2016-7542 (A read-only administrator on Fortinet devices with FortiOS 5.2.x ...)
-	TODO: check
+	NOT-FOR-US: FortiOS
 CVE-2016-7541 (Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x ...)
-	TODO: check
+	NOT-FOR-US: FortiOS
 CVE-2016-7512
 	RESERVED
 CVE-2016-7511 (Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows ...)

More information about the Secure-testing-commits mailing list