[Secure-testing-commits] r51555 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu May 11 21:30:03 UTC 2017 

Author: jmm
Date: 2017-05-11 21:30:03 +0000 (Thu, 11 May 2017)
New Revision: 51555

Modified:
   data/CVE/list
Log:
new x265 issue
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-11 21:10:12 UTC (rev 51554)
+++ data/CVE/list	2017-05-11 21:30:03 UTC (rev 51555)
@@ -1,5 +1,5 @@
 CVE-2017-8906 (An integer underflow vulnerability exists in pixel-a.asm, the x86 ...)
-	TODO: check
+	- x265 <unfixed>
 CVE-2017-8902
 	RESERVED
 CVE-2017-8901
@@ -7,11 +7,11 @@
 CVE-2017-8900
 	RESERVED
 CVE-2017-8899 (Invision Power Services (IPS) Community Suite 4.1.19.2 and earlier has ...)
-	TODO: check
+	NOT-FOR-US: Invision Power Services
 CVE-2017-8898 (Invision Power Services (IPS) Community Suite 4.1.19.2 and earlier has ...)
-	TODO: check
+	NOT-FOR-US: Invision Power Services
 CVE-2017-8897 (Invision Power Services (IPS) Community Suite 4.1.19.2 and earlier has ...)
-	TODO: check
+	NOT-FOR-US: Invision Power Services
 CVE-2017-8896
 	RESERVED
 CVE-2017-8895 (In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before ...)
@@ -118,9 +118,9 @@
 CVE-2017-8852 (SAP SAPCAR 721.510 has a Heap Based Buffer Overflow Vulnerability. It ...)
 	NOT-FOR-US: SAP
 CVE-2017-8851 (An issue was discovered on OnePlus One and X devices. Due to a lenient ...)
-	TODO: check
+	NOT-FOR-US: OnePlus One
 CVE-2017-8850 (An issue was discovered on OnePlus One, X, 2, 3, and 3T devices. Due to ...)
-	TODO: check
+	NOT-FOR-US: OnePlus One
 CVE-2017-8849
 	RESERVED
 	- smb4k <unfixed>
@@ -167,7 +167,7 @@
 CVE-2017-8835
 	RESERVED
 CVE-2016-10370 (An issue was discovered on OnePlus devices such as the 3T. The OnePlus ...)
-	TODO: check
+	NOT-FOR-US: OnePlus
 CVE-2016-10369 (unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a ...)
 	{DLA-935-1}
 	- lxterminal 0.3.0-2 (low; bug #862098)
@@ -8311,7 +8311,7 @@
 	- webkitgtk <unfixed> (unimportant)
 	NOTE: Not covered by security support
 CVE-2017-5948 (An issue was discovered on OnePlus One, X, 2, 3, and 3T devices. ...)
-	TODO: check
+	NOT-FOR-US: OnePlus One
 CVE-2017-5947
 	RESERVED
 CVE-2017-5946 (The Zip::File component in the rubyzip gem before 1.2.1 for Ruby has a ...)
@@ -30553,7 +30553,7 @@
 	- libav <removed> (unimportant)
 	NOTE: https://blogs.gentoo.org/ago/2016/09/20/libav-null-pointer-dereference-in-ff_put_pixels8_xy2_mmx-rnd_template-c/
 CVE-2016-7476 (The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, ...)
-	TODO: check
+	NOT-FOR-US: F5 BIG-IP
 CVE-2016-7475
 	RESERVED
 CVE-2016-7474 (In some cases the MCPD binary cache in F5 BIG-IP devices may allow a ...)

More information about the Secure-testing-commits mailing list