[Secure-testing-commits] r52044 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon May 29 05:47:44 UTC 2017
Author: carnil
Date: 2017-05-29 05:47:43 +0000 (Mon, 29 May 2017)
New Revision: 52044
Modified:
data/CVE/list
Log:
Add NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-29 05:39:59 UTC (rev 52043)
+++ data/CVE/list 2017-05-29 05:47:43 UTC (rev 52044)
@@ -2,13 +2,13 @@
- openldap 2.4.44+dfsg-5 (bug #863563)
NOTE: http://www.openldap.org/its/?findid=8655
CVE-2017-9252 (andrzuk/FineCMS through 2017-05-28 is vulnerable to a reflected XSS in ...)
- TODO: check
+ NOT-FOR-US: FineCMS
CVE-2017-9251 (andrzuk/FineCMS through 2017-05-28 is vulnerable to a reflected XSS in ...)
- TODO: check
+ NOT-FOR-US: FineCMS
CVE-2017-9250 (The lexer_process_char_literal function in ...)
TODO: check
CVE-2017-9249 (Cross-site scripting (XSS) vulnerability in Allen Disk 1.6 allows ...)
- TODO: check
+ NOT-FOR-US: Allen Disk
CVE-2017-9248
RESERVED
CVE-2017-9247
@@ -20,7 +20,7 @@
CVE-2017-9244
RESERVED
CVE-2017-9243 (Aries QWR-1104 Wireless-N Router with Firmware Version WRC.253.2.0913 ...)
- TODO: check
+ NOT-FOR-US: Aries QWR-1104 Wireless-N Router
CVE-2015-9059 (picocom before 2.0 has a command injection vulnerability in the 'send ...)
- picocom <unfixed>
NOTE: https://github.com/npat-efault/picocom/commit/1ebc60b20fbe9a02436d5cbbf8951714e749ddb1
@@ -82912,7 +82912,7 @@
- php-zend-db <not-affected> (Fixed before initial upload to the archive)
NOTE: http://framework.zend.com/security/advisory/ZF2015-02
CVE-2015-0269 (Directory traversal vulnerability in Contao before 3.2.19, and 3.4.x ...)
- TODO: check
+ NOT-FOR-US: Contao
CVE-2015-0268 (The vgic_v2_to_sgi function in arch/arm/vgic-v2.c in Xen 4.5.x, when ...)
- xen <not-affected> (Only affects 4.5)
NOTE: http://xenbits.xen.org/xsa/advisory-117.html
More information about the Secure-testing-commits
mailing list