[Secure-testing-commits] r51942 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-05-25 07:42:00 +0000 (Thu, 25 May 2017)
New Revision: 51942

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-25 06:03:20 UTC (rev 51941)
+++ data/CVE/list	2017-05-25 07:42:00 UTC (rev 51942)
@@ -42,7 +42,7 @@
 CVE-2017-9213
 	RESERVED
 CVE-2017-9212 (The Bluetooth stack on the BMW 330i 2011 allows a remote crash of the ...)
-	TODO: check
+	NOT-FOR-US: Bluetooth stack on the BMW 330i 2011
 CVE-2017-9211 (The crypto_skcipher_init_tfm function in crypto/skcipher.c in the Linux ...)
 	- linux <unfixed>
 	[jessie] - linux <not-affected> (Vulnerable code not present)
@@ -18430,7 +18430,7 @@
 	NOTE: http://www.talosintelligence.com/reports/TALOS-2017-0326/
 	NOTE: Apparently only one CVE assigned for both issues
 CVE-2017-2823 (A use-after-free vulnerability exists in the .ISO parsing ...)
-	TODO: check
+	NOT-FOR-US: PowerISO
 CVE-2017-2822
 	RESERVED
 CVE-2017-2821
@@ -18438,11 +18438,11 @@
 CVE-2017-2820
 	RESERVED
 CVE-2017-2819 (An exploitable heap-based buffer overflow exists in the Hangul Word ...)
-	TODO: check
+	NOT-FOR-US: Hancom Thinkfree Office NEO
 CVE-2017-2818
 	RESERVED
 CVE-2017-2817 (A stack buffer overflow vulnerability exists in the ISO parsing ...)
-	TODO: check
+	NOT-FOR-US: PowerISO
 CVE-2017-2816
 	RESERVED
 CVE-2017-2815
@@ -18482,9 +18482,9 @@
 	- wolfssl <unfixed> (bug #862154)
 	NOTE: http://www.talosintelligence.com/reports/TALOS-2017-0293/
 CVE-2017-2799 (An exploitable heap corruption vulnerability exists in the AddSst ...)
-	TODO: check
+	NOT-FOR-US: Antenna House DMC HTMLFilter
 CVE-2017-2798 (An exploitable heap corruption vulnerability exists in the ...)
-	TODO: check
+	NOT-FOR-US: Antenna House DMC HTMLFilter
 CVE-2017-2797 (An exploitable heap overflow vulnerability exists in the ...)
 	NOT-FOR-US: AntennaHouse
 CVE-2017-2796