[Secure-testing-commits] r51263 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Tue May 2 07:39:03 UTC 2017 

Author: jmm
Date: 2017-05-02 07:39:02 +0000 (Tue, 02 May 2017)
New Revision: 51263

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-02 07:37:17 UTC (rev 51262)
+++ data/CVE/list	2017-05-02 07:39:02 UTC (rev 51263)
@@ -49,7 +49,7 @@
 CVE-2017-8389
 	RESERVED
 CVE-2017-8388 (GeniXCMS 1.0.2 allows remote attackers to bypass the alertDanger ...)
-	TODO: check
+	NOT-FOR-US: GeniXCMS
 CVE-2017-8387
 	RESERVED
 CVE-2017-8386
@@ -72,9 +72,9 @@
 	- libpodofo <unfixed> (bug #861597)
 	NOTE: https://github.com/xiangxiaobo/poc_and_report/tree/master/podofo_heapoverflow_PdfParser.ReadObjects
 CVE-2017-8377 (GeniXCMS 1.0.2 has SQL Injection in ...)
-	TODO: check
+	NOT-FOR-US: GeniXCMS
 CVE-2017-8376 (GeniXCMS 1.0.2 has XSS triggered by an authenticated comment that is ...)
-	TODO: check
+	NOT-FOR-US: GeniXCMS
 CVE-2017-8375
 	RESERVED
 CVE-2017-8374 (The mad_bit_skip function in bit.c in Underbit MAD libmad 0.15.1b ...)
@@ -4998,9 +4998,9 @@
 CVE-2017-6566
 	RESERVED
 CVE-2017-6565 (On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag ...)
-	TODO: check
+	NOT-FOR-US: Franklin Fueling Systems TS-550 evo
 CVE-2017-6564 (On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the Guest ...)
-	TODO: check
+	NOT-FOR-US: Franklin Fueling Systems TS-550 evo
 CVE-2017-6563
 	RESERVED
 CVE-2017-6562 (XSS in Agora-Project 3.2.2 exists with an ...)
@@ -6416,7 +6416,7 @@
 CVE-2017-6129
 	RESERVED
 CVE-2017-6128 (An attacker may be able to cause a denial-of-service (DoS) attack ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2017-6188 (Munin before 2.999.6 has a local file write vulnerability when CGI ...)
 	{DSA-3794-1 DLA-836-1}
 	- munin 2.0.31-1 (bug #855705)
@@ -7954,7 +7954,7 @@
 CVE-2017-5632 (An issue was discovered on the ASUS RT-N56U Wireless Router with ...)
 	NOT-FOR-US: Asus router
 CVE-2017-5631 (An issue was discovered in KMCIS CaseAware. Reflected cross site ...)
-	TODO: check
+	NOT-FOR-US: KMCIS CaseAware
 CVE-2017-5630 (PECL in the download utility class in the Installer in PEAR Base System ...)
 	- php5 <unfixed> (unimportant)
 	- php-pear <unfixed> (unimportant)

More information about the Secure-testing-commits mailing list