[Secure-testing-commits] r56667 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Oct 12 21:15:34 UTC 2017 

Author: carnil
Date: 2017-10-12 21:15:34 +0000 (Thu, 12 Oct 2017)
New Revision: 56667

Modified:
   data/CVE/list
Log:
Process some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-12 21:14:48 UTC (rev 56666)
+++ data/CVE/list	2017-10-12 21:15:34 UTC (rev 56667)
@@ -3,7 +3,7 @@
 CVE-2017-15291
 	RESERVED
 CVE-2017-15290 (Mirasys Video Management System (VMS) 6.x before 6.4.6, 7.x before ...)
-	TODO: check
+	NOT-FOR-US: Mirasys Video Management System
 CVE-2017-XXXX [XSA 244]
 	- xen <unfixed>
 	NOTE: https://xenbits.xen.org/xsa/advisory-244.html
@@ -7075,7 +7075,7 @@
 	- kanboard <itp> (bug #790814)
 	NOTE: https://github.com/kanboard/kanboard/commit/88dd6abbf3f519897f2f6280e95c9eec9123a4ae
 CVE-2017-12849 (Response discrepancy in the login and password reset forms in ...)
-	TODO: check
+	NOT-FOR-US: SilverStripe CMS
 CVE-2017-12848
 	RESERVED
 CVE-2017-12847 (Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping ...)
@@ -12684,7 +12684,7 @@
 CVE-2017-10858 (Untrusted search path vulnerability in "i-filter 6.0 install program" ...)
 	NOT-FOR-US: i-filter 6.0 install program
 CVE-2017-10857 (Cybozu Office 10.0.0 to 10.6.1 allows authenticated attackers to ...)
-	TODO: check
+	NOT-FOR-US: Cybozu
 CVE-2017-10856 (SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, ...)
 	NOT-FOR-US: SEIL
 CVE-2017-10855 (Untrusted search path vulnerability in FENCE-Explorer for Windows ...)
@@ -16221,7 +16221,7 @@
 CVE-2017-9515
 	RESERVED
 CVE-2017-9514 (Bamboo before 6.0.5, 6.1.x before 6.1.4, and 6.2.x before 6.2.1 had a ...)
-	TODO: check
+	NOT-FOR-US: Atlassian Bamboo
 CVE-2017-9513
 	RESERVED
 CVE-2017-9512 (The mostActiveCommitters.do resource in Atlassian FishEye and ...)
@@ -81178,7 +81178,7 @@
 CVE-2015-6359 (The Neighbor Discovery (ND) protocol implementation in the IPv6 stack ...)
 	NOT-FOR-US: Cisco IOS
 CVE-2015-6358 (Multiple Cisco embedded devices use hardcoded X.509 certificates and ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2015-6357 (The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 ...)
 	NOT-FOR-US: Cisco FireSIGHT
 CVE-2015-6356 (Cross-site scripting (XSS) vulnerability in the WeChat page in Cisco ...)

More information about the Secure-testing-commits mailing list