[Secure-testing-commits] r52092 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon May 29 21:27:28 UTC 2017
Author: jmm
Date: 2017-05-29 21:27:27 +0000 (Mon, 29 May 2017)
New Revision: 52092
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-29 21:24:36 UTC (rev 52091)
+++ data/CVE/list 2017-05-29 21:27:27 UTC (rev 52092)
@@ -1,5 +1,5 @@
CVE-2017-9302 (RealPlayer 16.0.2.32 allows remote attackers to cause a denial of ...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2017-9301 (plugins\audio_filter\libmpgatofixed32_plugin.dll in VideoLAN VLC media ...)
TODO: check
CVE-2017-9300 (plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 ...)
@@ -7,27 +7,27 @@
CVE-2017-9299 (Open Ticket Request System (OTRS) 3.3.9 has XSS in ...)
TODO: check
CVE-2017-9298 (Cross-site scripting vulnerability in Hitachi Device Manager before ...)
- TODO: check
+ NOT-FOR-US: Hitacho Device Manager
CVE-2017-9297 (Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 ...)
- TODO: check
+ NOT-FOR-US: Hitacho Device Manager
CVE-2017-9296 (Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 ...)
- TODO: check
+ NOT-FOR-US: Hitacho Device Manager
CVE-2017-9295 (XXE vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi ...)
- TODO: check
+ NOT-FOR-US: Hitacho Device Manager
CVE-2017-9294 (RMI vulnerability in Hitachi Device Manager before 8.5.2-01 allows ...)
- TODO: check
+ NOT-FOR-US: Hitacho Device Manager
CVE-2017-9293
RESERVED
CVE-2017-9292 (Lansweeper before 6.0.0.65 has XSS in an image retrieval URI, aka Bug ...)
- TODO: check
+ NOT-FOR-US: Lansweeper
CVE-2017-9291
RESERVED
CVE-2017-9290
RESERVED
CVE-2017-9289 (Bram Korsten Note through 1.2.0 is vulnerable to a reflected XSS in ...)
- TODO: check
+ NOT-FOR-US: Bram Korsten Note
CVE-2017-9288 (The Raygun4WP plugin 1.8.0 for WordPress is vulnerable to a reflected ...)
- TODO: check
+ NOT-FOR-US: Wordpress plugin
CVE-2017-9286
RESERVED
CVE-2017-9285
@@ -69,9 +69,9 @@
CVE-2017-9267
RESERVED
CVE-2016-10379 (The VirtueMart com_virtuemart component 3.0.14 for Joomla! allows SQL ...)
- TODO: check
+ NOT-FOR-US: Joomla addon
CVE-2016-10378 (e107 2.1.1 allows SQL injection by remote authenticated administrators ...)
- TODO: check
+ NOT-FOR-US: e107
CVE-2017-9266
RESERVED
CVE-2017-9265 (In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsing ...)
@@ -3542,15 +3542,15 @@
CVE-2017-7918
RESERVED
CVE-2017-7917 (A Cross-Site Request Forgery issue was discovered in Moxa OnCell ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2017-7916
RESERVED
CVE-2017-7915 (An Improper Restriction of Excessive Authentication Attempts issue was ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2017-7914
RESERVED
CVE-2017-7913 (A Plaintext Storage of a Password issue was discovered in Moxa OnCell ...)
- TODO: check
+ NOT-FOR-US: Moxa
CVE-2017-7912
RESERVED
CVE-2017-7911 (A Code Injection issue was discovered in CyberVision Kaa IoT Platform, ...)
@@ -49141,7 +49141,7 @@
NOTE: http://qpid.apache.org/releases/qpid-proton-0.12.1/
NOTE: Affects Qpid Proton python API starting at 0.9 up to and including 0.12.0
CVE-2016-2165 (The Loggregator Traffic Controller endpoints in cf-release v231 and ...)
- TODO: check
+ NOT-FOR-US: Cloud Foundry
CVE-2016-2164 (The (1) FileService.importFileByInternalUserId and (2) ...)
NOT-FOR-US: Apache OpenMeetings
CVE-2016-2163 (Cross-site scripting (XSS) vulnerability in Apache OpenMeetings before ...)
More information about the Secure-testing-commits
mailing list