[Secure-testing-commits] r51357 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri May 5 21:36:11 UTC 2017 

Author: jmm
Date: 2017-05-05 21:36:11 +0000 (Fri, 05 May 2017)
New Revision: 51357

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-05 21:10:16 UTC (rev 51356)
+++ data/CVE/list	2017-05-05 21:36:11 UTC (rev 51357)
@@ -1,31 +1,31 @@
 CVE-2017-8801 (Trend Micro OfficeScan 11.0 before SP1 CP 6325 (with Agent Module Build ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro
 CVE-2017-8800
 	RESERVED
 CVE-2017-8799 (Untrusted input execution via igetwild in all iRODS versions before ...)
-	TODO: check
+	NOT-FOR-US: iRODS
 CVE-2017-8798
 	RESERVED
 CVE-2017-8797
 	RESERVED
 CVE-2017-8796 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8795 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8794 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8793 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8792 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8791 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8790 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8789 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. A ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8788 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8787 (The PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry function in ...)
 	- libpodofo <unfixed> (bug #861738)
 CVE-2017-8786 (pcre2test.c in PCRE2 10.23 allows remote attackers to cause a denial of ...)
@@ -91,7 +91,7 @@
 CVE-2017-8761
 	RESERVED
 CVE-2017-8760 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8759
 	RESERVED
 CVE-2017-8758
@@ -1153,9 +1153,9 @@
 CVE-2017-8306
 	RESERVED
 CVE-2017-8304 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8303 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
-	TODO: check
+	NOT-FOR-US: Accellion FTA devices
 CVE-2017-8302 (Mura CMS 7.0.6967 allows admin/?muraAction= XSS attacks, related to ...)
 	NOT-FOR-US: Mura CMS
 CVE-2017-8300
@@ -1667,7 +1667,7 @@
 CVE-2017-8081 (Poor cryptographic salt initialization in ...)
 	NOT-FOR-US: GetSimple CMS
 CVE-2017-8080 (Atlassian Hipchat Server before 2.2.4 allows remote authenticated ...)
-	TODO: check
+	NOT-FOR-US: HipChat
 CVE-2010-5329 (The video_usercopy function in drivers/media/video/v4l2-ioctl.c in the ...)
 	- linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename)
 	NOTE: Fixed by: https://git.kernel.org/linus/fc0a80798576f80ca10b3f6c9c7097f12fd1d64e (v2.6.39-rc2)
@@ -20691,7 +20691,7 @@
 CVE-2017-1157
 	RESERVED
 CVE-2017-1156 (IBM WebSphere Portal 8.5 and 9.0 could allow a remote attacker to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1155 (IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could ...)
 	NOT-FOR-US: IBM
 CVE-2017-1154 (IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could ...)
@@ -21372,9 +21372,9 @@
 CVE-2016-9693 (IBM Business Process Manager 7.5, 8.0, and 8.5 has a file download ...)
 	NOT-FOR-US: IBM
 CVE-2016-9692 (IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-9691 (IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to a ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-9690
 	RESERVED
 CVE-2016-9689
@@ -25454,7 +25454,7 @@
 CVE-2016-8917 (IBM Sterling Order Management 9.2 - 9.5 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2016-8916 (IBM Tivoli Storage Manager 5.5, 6.1-6.4, and 7.1 stores password ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-8915 (IBM WebSphere MQ 8.0 could allow an authenticated user with access to ...)
 	NOT-FOR-US: IBM
 CVE-2016-8914
@@ -31902,7 +31902,7 @@
 	- botan1.10 <not-affected> (Introduced in 1.11.12)
 	NOTE: Introduced in 1.11.12, fixed in 1.11.31
 CVE-2016-6877 (Citrix XenMobile Server before 10.5.0.24 allows man-in-the-middle ...)
-	TODO: check
+	NOT-FOR-US: Citrix
 CVE-2016-6876 (The RESOLV::lookup iRule command in F5 BIG-IP LTM, APM, ASM, and Link ...)
 	NOT-FOR-US: F5
 CVE-2016-6869
@@ -54354,7 +54354,7 @@
 CVE-2016-0256
 	RESERVED
 CVE-2016-0255 (IBM Marketing Platform 9.1 and 10.0 is vulnerable to stored cross-site ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2016-0254
 	RESERVED
 CVE-2016-0253

More information about the Secure-testing-commits mailing list