[Secure-testing-commits] r51839 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon May 22 16:50:56 UTC 2017
Author: jmm
Date: 2017-05-22 16:50:55 +0000 (Mon, 22 May 2017)
New Revision: 51839
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-22 16:48:18 UTC (rev 51838)
+++ data/CVE/list 2017-05-22 16:50:55 UTC (rev 51839)
@@ -14,25 +14,25 @@
NOTE: https://github.com/ImageMagick/ImageMagick/issues/456
NOTE: https://github.com/ImageMagick/ImageMagick/commit/7b8c1df65b25d6671f113e2306982eded44ce3b4
CVE-2017-9140 (Cross-site scripting (XSS) vulnerability in Telerik Reporting for ...)
- TODO: check
+ NOT-FOR-US: Telerik
CVE-2017-9139 (There is a stack-based buffer overflow on some Tenda routers ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2017-9138 (There is a debug-interface vulnerability on some Tenda routers ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2017-9137 (Ceragon FibeAir IP-10 wireless radios through 7.2.0 have a default ...)
- TODO: check
+ NOT-FOR-US: Ceragon FibeAir
CVE-2017-9136 (An issue was discovered on Mimosa Client Radios before 2.2.3. In the ...)
- TODO: check
+ NOT-FOR-US: Mimosa Client Radios
CVE-2017-9135 (An issue was discovered on Mimosa Client Radios before 2.2.4 and Mimosa ...)
- TODO: check
+ NOT-FOR-US: Mimosa Client Radios
CVE-2017-9134 (An information-leakage issue was discovered on Mimosa Client Radios ...)
- TODO: check
+ NOT-FOR-US: Mimosa Client Radios
CVE-2017-9133 (An issue was discovered on Mimosa Client Radios before 2.2.3 and Mimosa ...)
- TODO: check
+ NOT-FOR-US: Mimosa Client Radios
CVE-2017-9132 (A hard-coded credentials issue was discovered on Mimosa Client Radios ...)
- TODO: check
+ NOT-FOR-US: Mimosa Client Radios
CVE-2017-9131 (An issue was discovered on Mimosa Client Radios before 2.2.3 and Mimosa ...)
- TODO: check
+ NOT-FOR-US: Mimosa Client Radios
CVE-2017-9130
RESERVED
CVE-2017-9129
@@ -105,7 +105,7 @@
CVE-2017-9102
RESERVED
CVE-2017-9101 (import.php (aka the Phonebook import feature) in PlaySMS 1.4 allows ...)
- TODO: check
+ NOT-FOR-US: PlaySMS
CVE-2014-9970 (jasypt before 1.9.2 allows a timing attack against the password hash ...)
- jasypt 1.9.2-1
[wheezy] - jasypt <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list