[Secure-testing-commits] r56387 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Oct 3 21:35:33 UTC 2017
Author: jmm
Date: 2017-10-03 21:35:33 +0000 (Tue, 03 Oct 2017)
New Revision: 56387
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-03 21:30:29 UTC (rev 56386)
+++ data/CVE/list 2017-10-03 21:35:33 UTC (rev 56387)
@@ -3,9 +3,9 @@
CVE-2017-15010 (A ReDoS (regular expression denial of service) flaw was found in the ...)
TODO: check
CVE-2017-15009 (PRTG Network Monitor version 17.3.33.2830 is vulnerable to reflected ...)
- TODO: check
+ NOT-FOR-US: PRTG Network Monitor
CVE-2017-15008 (PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored ...)
- TODO: check
+ NOT-FOR-US: PRTG Network Monitor
CVE-2017-15007
RESERVED
CVE-2017-15006
@@ -6232,15 +6232,15 @@
CVE-2017-12823
RESERVED
CVE-2017-12822 (Remote enabling and disabling admin interface in Gemalto's HASP SRM, ...)
- TODO: check
+ NOT-FOR-US: Gemalto
CVE-2017-12821 (Memory corruption in Gemalto's HASP SRM, Sentinel HASP and Sentinel ...)
- TODO: check
+ NOT-FOR-US: Gemalto
CVE-2017-12820 (Arbitrary memory read from controlled memory pointer in Gemalto's HASP ...)
- TODO: check
+ NOT-FOR-US: Gemalto
CVE-2017-12819 (Remote manipulations with language pack updater lead to NTLM-relay ...)
- TODO: check
+ NOT-FOR-US: Gemalto
CVE-2017-12818 (Stack overflow in custom XML-parser in Gemalto's HASP SRM, Sentinel ...)
- TODO: check
+ NOT-FOR-US: Gemalto
CVE-2017-12817 (In Kaspersky Internet Security for Android 11.12.4.1622, some of the ...)
NOT-FOR-US: Kaspersky Internet Security for Android
CVE-2017-12816 (In Kaspersky Internet Security for Android 11.12.4.1622, some of ...)
@@ -12951,7 +12951,7 @@
[wheezy] - libstruts1.2-java <not-affected> (vulnerable code not present)
NOTE: https://struts.apache.org/docs/s2-051.html
CVE-2017-9792 (In Apache Impala (incubating) before 2.10.0, a malicious user with ...)
- TODO: check
+ NOT-FOR-US: Apache Impala
CVE-2017-9791 (The Struts 1 plugin in Apache Struts 2.3.x might allow remote code ...)
- libstruts1.2-java <not-affected> (Vulnerable code not present)
NOTE: Issue is specific to Struts 2.x.
@@ -38995,7 +38995,7 @@
CVE-2017-1542
RESERVED
CVE-2017-1541 (A flaw in the AIX 5.3, 6.1, 7.1, and 7.2 JRE/SDK installp and updatep ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1540
RESERVED
CVE-2017-1539 (IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to ...)
@@ -39825,7 +39825,7 @@
CVE-2017-1127 (IBM Rational DOORS Next Generation 4.0, 5.0 and 6.0 is vulnerable to ...)
NOT-FOR-US: IBM
CVE-2017-1126 (IBM WebSphere Message Broker (IBM Integration Bus 9.0 and 10.0) could ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1125 (IBM Cognos Analytics 10.1 and 10.2 could allow a local user to craft a ...)
NOT-FOR-US: IBM
CVE-2017-1124 (IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local ...)
More information about the Secure-testing-commits
mailing list