[Secure-testing-commits] r51895 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue May 23 19:15:38 UTC 2017 

Author: carnil
Date: 2017-05-23 19:15:38 +0000 (Tue, 23 May 2017)
New Revision: 51895

Modified:
   data/CVE/list
Log:
Process a couple of more NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-23 19:04:24 UTC (rev 51894)
+++ data/CVE/list	2017-05-23 19:15:38 UTC (rev 51895)
@@ -14907,7 +14907,7 @@
 	NOTE: https://github.com/swiftmailer/swiftmailer/issues/844
 	NOTE: Fixed by https://github.com/swiftmailer/swiftmailer/commit/e6ccf40d856af9598b76eb313b215eed25ae9e86
 CVE-2016-10073 (The from method in library/core/class.email.php in Vanilla Forums ...)
-	TODO: check
+	NOT-FOR-US: Vanilla Forums
 CVE-2016-10072 (** DISPUTED ** WampServer 3.0.6 has two files called 'wampmanager.exe' ...)
 	NOT-FOR-US: WampServer
 CVE-2016-10044 (The aio_mount function in fs/aio.c in the Linux kernel before 4.7.7 ...)
@@ -40726,7 +40726,7 @@
 	NOTE: https://github.com/ADOdb/ADOdb/commit/ecb93d8c1
 	NOTE: Vulnerable file is shipped as an example only
 CVE-2016-4854 (Cross-site request forgery (CSRF) vulnerability in L-04D firmware ...)
-	TODO: check
+	NOT-FOR-US: L-04D firmware
 CVE-2016-4853 (AKABEi SOFT2 games allow remote attackers to execute arbitrary OS ...)
 	NOT-FOR-US: AKABEi SOFT2
 CVE-2016-4852 (YoruFukurou (NightOwl) before 2.85 relies on support for emoji ...)
@@ -50164,7 +50164,7 @@
 CVE-2016-1877
 	RESERVED
 CVE-2016-1876 (The backend service process in Lenovo Solution Center (aka LSC) before ...)
-	TODO: check
+	NOT-FOR-US: Lenovo
 CVE-2016-1875
 	RESERVED
 CVE-2016-1874
@@ -57464,7 +57464,7 @@
 CVE-2015-8100 (The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for ...)
 	- net-snmp <not-affected> (Specific to packaging in OpenBSD)
 CVE-2015-8089 (The GPU driver in Huawei P7 phones with software P7-L00 before ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2015-8088 (Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones ...)
 	NOT-FOR-US: Huawei
 CVE-2015-8087 (Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before ...)
@@ -61833,7 +61833,7 @@
 	- openafs 1.6.13-1
 	NOTE: http://www.openafs.org/pages/security/OPENAFS-SA-2015-006.txt
 CVE-2015-6586 (The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices with ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2015-6585
 	RESERVED
 CVE-2015-6584 (Cross-site scripting (XSS) vulnerability in the DataTables plugin ...)
@@ -64164,7 +64164,7 @@
 CVE-2015-5683
 	RESERVED
 CVE-2015-5682 (upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows ...)
-	TODO: check
+	NOT-FOR-US: Powerplay Gallery plugin for WordPress
 CVE-2015-5681 (Unrestricted file upload vulnerability in upload.php in the Powerplay ...)
 	NOT-FOR-US: Powerplay Gallery plugin for WordPress
 CVE-2015-5680
@@ -64336,7 +64336,7 @@
 CVE-2015-5610 (The RSM (aka RSMWinService) service in SolarWinds N-Able N-Central ...)
 	NOT-FOR-US: SolarWinds
 CVE-2015-5609 (Absolute path traversal vulnerability in the Image Export plugin 1.1 ...)
-	TODO: check
+	NOT-FOR-US: Image Export plugin for WordPress
 CVE-2015-5608
 	RESERVED
 CVE-2015-5606

More information about the Secure-testing-commits mailing list