[Secure-testing-commits] r57694 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Nov 16 21:30:15 UTC 2017 

Author: carnil
Date: 2017-11-16 21:30:15 +0000 (Thu, 16 Nov 2017)
New Revision: 57694

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-11-16 21:27:42 UTC (rev 57693)
+++ data/CVE/list	2017-11-16 21:30:15 UTC (rev 57694)
@@ -195,17 +195,17 @@
 CVE-2017-16854
 	RESERVED
 CVE-2017-16851 (Zoho ManageEngine Applications Manager 13 allows SQL injection via the ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2017-16850 (Zoho ManageEngine Applications Manager 13 allows SQL injection via the ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2017-16849 (Zoho ManageEngine Applications Manager 13 allows SQL injection via the ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2017-16848 (Zoho ManageEngine Applications Manager 13 allows SQL injection via the ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2017-16847 (Zoho ManageEngine Applications Manager 13 allows SQL injection via the ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2017-16846 (Zoho ManageEngine Applications Manager 13 allows SQL injection via the ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2017-16845
 	RESERVED
 CVE-2017-16844 (Heap-based buffer overflow in the loadbuf function in formisc.c in ...)
@@ -903,7 +903,7 @@
 CVE-2017-16561 (/view/friend_profile.php in Ingenious School Management System 2.3.0 is ...)
 	NOT-FOR-US: Ingenious School Management System
 CVE-2017-16560 (SanDisk Secure Access 3.01 vault decrypts and copies encrypted files ...)
-	TODO: check
+	NOT-FOR-US: SanDisk Secure Access
 CVE-2017-16559
 	RESERVED
 CVE-2017-16558
@@ -122915,7 +122915,7 @@
 CVE-2014-2846 (Directory traversal vulnerability in opt/arkeia/wui/htdocs/index.php ...)
 	NOT-FOR-US: Arkeia Server Backup
 CVE-2014-2845 (Cyberduck before 4.4.4 on Windows does not properly validate X.509 ...)
-	TODO: check
+	NOT-FOR-US: Cyberduck on Windows
 CVE-2014-2844 (Cross-site scripting (XSS) vulnerability in F-Secure Messaging Secure ...)
 	NOT-FOR-US: F-Secure Messaging Secure Gateway
 CVE-2014-2843

More information about the Secure-testing-commits mailing list