[Secure-testing-commits] r51330 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu May 4 09:22:11 UTC 2017 

Author: jmm
Date: 2017-05-04 09:22:11 +0000 (Thu, 04 May 2017)
New Revision: 51330

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-04 09:21:01 UTC (rev 51329)
+++ data/CVE/list	2017-05-04 09:22:11 UTC (rev 51330)
@@ -4321,7 +4321,7 @@
 CVE-2017-7230 (A buffer overflow vulnerability in Disk Sorter Enterprise 9.5.12 and ...)
 	NOT-FOR-US: Disk Sorter Enterprise
 CVE-2017-7229 (PGP/MIME encrypted messages injected into a Vaultive O365 (before ...)
-	TODO: check
+	NOT-FOR-US: Vaultive O365
 CVE-2017-7228 (An issue (known as XSA-212) was discovered in Xen, with fixes available ...)
 	{DLA-907-1}
 	- xen 4.8.1-1 (bug #859560)
@@ -5735,17 +5735,17 @@
 CVE-2017-6630
 	RESERVED
 CVE-2017-6629 (A vulnerability in the ImageID parameter of Cisco Unity Connection ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-6628 (A vulnerability in SMART-SSL Accelerator functionality for Cisco Wide ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-6627
 	RESERVED
 CVE-2017-6626 (A vulnerability in the Cisco Finesse Notification Service for Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-6625 (A "Cisco Firepower Threat Defense 6.0.0 through 6.2.2 and Cisco ASA ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-6624 (A vulnerability in Cisco IOS 15.5(3)M Software for Cisco CallManager ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-6623
 	RESERVED
 CVE-2017-6622
@@ -5753,7 +5753,7 @@
 CVE-2017-6621
 	RESERVED
 CVE-2017-6620 (A vulnerability in the remote management access control list (ACL) ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-6619 (A vulnerability in the web-based GUI of Cisco Integrated Management ...)
 	NOT-FOR-US: Cisco
 CVE-2017-6618 (A vulnerability in the web-based GUI of Cisco Integrated Management ...)
@@ -9508,7 +9508,7 @@
 	{DSA-3775-1 DLA-809-1}
 	- tcpdump 4.9.0-1
 CVE-2017-5481 (Trend Micro OfficeScan 11.0 before SP1 CP 6325 and XG before CP 1352 ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2017-5480 (Directory traversal vulnerability in inc/files/files.ctrl.php in ...)
 	- b2evolution <removed>
 CVE-2017-5479
@@ -10455,7 +10455,7 @@
 CVE-2017-5241
 	RESERVED
 CVE-2017-5240 (Editions of Rapid7 AppSpider Pro prior to version 6.14.060 contain a ...)
-	TODO: check
+	NOT-FOR-US: Rapid7 AppSpider Pro
 CVE-2017-5239 (Due to a lack of standard encryption when transmitting sensitive ...)
 	NOT-FOR-US: Eview GPS trackers
 CVE-2017-5238 (Due to a lack of bounds checking, several input configuration fields ...)
@@ -10463,7 +10463,7 @@
 CVE-2017-5237 (Due to a lack of authentication, an unauthenticated user who knows the ...)
 	NOT-FOR-US: Eview GPS trackers
 CVE-2017-5236 (Editions of Rapid7 AppSpider Pro installers prior to version 6.14.060 ...)
-	TODO: check
+	NOT-FOR-US: Rapid7 AppSpider Pro
 CVE-2017-5235 (Rapid7 Metasploit Pro installers prior to version 4.13.0-2017022101 ...)
 	NOT-FOR-US: Rapid7
 CVE-2017-5234 (Rapid7 Insight Collector installers prior to version 1.0.16 contain a ...)
@@ -14145,7 +14145,7 @@
 CVE-2016-9977
 	RESERVED
 CVE-2016-9976 (IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-9975 (IBM Jazz for Service Management 1.1.2.1 and 1.1.3 is vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2016-9974
@@ -44718,7 +44718,7 @@
 CVE-2016-2931 (IBM BigFix Remote Control before 9.1.3 allows remote attackers to ...)
 	NOT-FOR-US: IBM
 CVE-2016-2930 (IBM BigFix Remote Control 9.1.3 could allow a remote attacker to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-2929 (IBM BigFix Remote Control before 9.1.3 does not properly restrict ...)
 	NOT-FOR-US: IBM
 CVE-2016-2928 (IBM BigFix Remote Control before 9.1.3 allows remote authenticated ...)
@@ -54042,7 +54042,7 @@
 CVE-2016-0383
 	RESERVED
 CVE-2016-0382 (The IBM Tealeaf Consumer Experience 8.7, 8.8, and 9.0 portal exposes ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-0381 (IBM Cognos TM1 10.2.2 before FP5, when the host/pmhub/pm/admin ...)
 	NOT-FOR-US: IBM
 CVE-2016-0380 (IBM Sterling Connect:Direct for Unix 4.1.0 before 4.1.0.4 iFix073 and ...)

More information about the Secure-testing-commits mailing list