[Secure-testing-commits] r57421 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Nov 7 21:37:51 UTC 2017


Author: carnil
Date: 2017-11-07 21:37:51 +0000 (Tue, 07 Nov 2017)
New Revision: 57421

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-11-07 21:33:09 UTC (rev 57420)
+++ data/CVE/list	2017-11-07 21:37:51 UTC (rev 57421)
@@ -2115,7 +2115,7 @@
 CVE-2017-15888 (Cross-site scripting (XSS) vulnerability in Custom Internet Radio List ...)
 	NOT-FOR-US: Synology
 CVE-2017-15887 (An improper restriction of excessive authentication attempts ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2017-15886
 	RESERVED
 CVE-2017-15885 (Reflected XSS in the web administration portal on the Axis 2100 Network ...)
@@ -7311,11 +7311,11 @@
 	NOTE: https://www.ruby-lang.org/en/news/2017/09/14/openssl-asn1-buffer-underrun-cve-2017-14033/
 	NOTE: https://github.com/ruby/openssl/commit/1648afef33c1d97fb203c82291b8a61269e85d3b
 CVE-2017-14031 (An Improper Access Control issue was discovered in Trihedral VTScada ...)
-	TODO: check
+	NOT-FOR-US: Trihedral VTScada
 CVE-2017-14030
 	RESERVED
 CVE-2017-14029 (An Uncontrolled Search Path Element issue was discovered in Trihedral ...)
-	TODO: check
+	NOT-FOR-US: Trihedral VTScada
 CVE-2017-14028
 	RESERVED
 CVE-2017-14027 (A Use of Hard-coded Credentials issue was discovered in Korenix JetNet ...)
@@ -7323,11 +7323,11 @@
 CVE-2017-14026
 	RESERVED
 CVE-2017-14025 (An Improper Input Validation issue was discovered in ABB FOX515T ...)
-	TODO: check
+	NOT-FOR-US: ABB FOX515T
 CVE-2017-14024
 	RESERVED
 CVE-2017-14023 (An Improper Input Validation issue was discovered in Siemens SIMATIC ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2017-14022
 	RESERVED
 CVE-2017-14021 (A Use of Hard-coded Cryptographic Key issue was discovered in Korenix ...)
@@ -12896,11 +12896,11 @@
 CVE-2017-12097
 	RESERVED
 CVE-2017-12096 (An exploitable vulnerability exists in the WiFi management of Circle ...)
-	TODO: check
+	NOT-FOR-US: Circle of Disney
 CVE-2017-12095
 	RESERVED
 CVE-2017-12094 (An exploitable vulnerability exists in the WiFi Channel parsing of ...)
-	TODO: check
+	NOT-FOR-US: Circle with Disney
 CVE-2017-12093
 	RESERVED
 CVE-2017-12092
@@ -12918,11 +12918,11 @@
 CVE-2017-12086
 	RESERVED
 CVE-2017-12085 (An exploitable routing vulnerability exists in the Circle with Disney ...)
-	TODO: check
+	NOT-FOR-US: Circle with Disney
 CVE-2017-12084 (A backdoor vulnerability exists in remote control functionality of ...)
-	TODO: check
+	NOT-FOR-US: Circle with Disney
 CVE-2017-12083 (An exploitable information disclosure vulnerability exists in the apid ...)
-	TODO: check
+	NOT-FOR-US: Circle with Disney
 CVE-2017-12082
 	RESERVED
 CVE-2017-12081




More information about the Secure-testing-commits mailing list