[Secure-testing-commits] r56891 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Oct 20 17:09:46 UTC 2017
Author: carnil
Date: 2017-10-20 17:09:45 +0000 (Fri, 20 Oct 2017)
New Revision: 56891
Modified:
data/CVE/list
Log:
Process several NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-20 15:12:39 UTC (rev 56890)
+++ data/CVE/list 2017-10-20 17:09:45 UTC (rev 56891)
@@ -15223,43 +15223,43 @@
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
[wheezy] - virtualbox <end-of-life> (DSA 3454)
CVE-2017-10427 (Vulnerability in the Oracle Retail Xstore Point of Service component ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10426 (Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10425 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10424 (Vulnerability in the MySQL Enterprise Monitor component of Oracle ...)
- TODO: check
+ NOT-FOR-US: MySQL Enterprise Monitor component of Oracle MySQL
CVE-2017-10423 (Vulnerability in the Oracle Retail Back Office component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10422 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10421 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10420 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10419 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10418 (Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10417 (Vulnerability in the Oracle Advanced Outbound Telephony component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10416 (Vulnerability in the Oracle Advanced Outbound Telephony component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10415 (Vulnerability in the Oracle iSupport component of Oracle E-Business ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10414 (Vulnerability in the Oracle iStore component of Oracle E-Business ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10413 (Vulnerability in the Oracle Mobile Field Service component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10412 (Vulnerability in the Oracle Knowledge Management component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10411 (Vulnerability in the Oracle Knowledge Management component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10410 (Vulnerability in the Oracle Knowledge Management component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10409 (Vulnerability in the Oracle iStore component of Oracle E-Business ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10408 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...)
- virtualbox 5.1.30-dfsg-1
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
@@ -15269,31 +15269,31 @@
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
[wheezy] - virtualbox <end-of-life> (DSA 3454)
CVE-2017-10406 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10405 (Vulnerability in the Oracle Hospitality Reporting and Analytics ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10404 (Vulnerability in the Oracle Hospitality Reporting and Analytics ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10403 (Vulnerability in the Oracle Hospitality Reporting and Analytics ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10402 (Vulnerability in the Oracle Hospitality Reporting and Analytics ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10401 (Vulnerability in the Oracle Hospitality Cruise Materials Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10400 (Vulnerability in the Oracle GlassFish Server component of Oracle ...)
TODO: check
CVE-2017-10399 (Vulnerability in the Oracle Hospitality Cruise Fleet Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10398 (Vulnerability in the Oracle Hospitality Cruise Fleet Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10397 (Vulnerability in the Oracle Hospitality Cruise Fleet Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10396 (Vulnerability in the Oracle Hospitality Cruise AffairWhere component ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10395 (Vulnerability in the Oracle Hospitality Cruise Fleet Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10394 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10393 (Vulnerability in the Oracle GlassFish Server component of Oracle ...)
TODO: check
CVE-2017-10392 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...)
@@ -15305,7 +15305,7 @@
CVE-2017-10390
RESERVED
CVE-2017-10389 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10388 (Vulnerability in the Java SE, Java SE Embedded component of Oracle ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -15313,7 +15313,7 @@
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2017-10387 (Vulnerability in the Oracle CRM Technical Foundation component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10386 (Vulnerability in the Java Advanced Management Console component of ...)
NOT-FOR-US: Java Advanced Management Console
CVE-2017-10385 (Vulnerability in the Oracle GlassFish Server component of Oracle ...)
@@ -15324,11 +15324,11 @@
- mysql-5.5 <removed> (bug #878402)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL
CVE-2017-10383 (Vulnerability in the Oracle Hospitality Guest Access component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10382 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10381 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10380 (Vulnerability in the Java Advanced Management Console component of ...)
NOT-FOR-US: Java Advanced Management Console
CVE-2017-10379 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
@@ -15346,43 +15346,43 @@
CVE-2017-10376
RESERVED
CVE-2017-10375 (Vulnerability in the Oracle Hospitality Guest Access component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10374
RESERVED
CVE-2017-10373 (Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10372 (Vulnerability in the Oracle Hospitality Guest Access component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10371
RESERVED
CVE-2017-10370 (Vulnerability in the Oracle Hospitality Guest Access component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10369 (Vulnerability in the Oracle Virtual Directory component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10368 (Vulnerability in the PeopleSoft Enterprise SCM eProcurement component ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10367 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10366 (Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10365 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #878398)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL
CVE-2017-10364 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10363 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10362 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10361 (Vulnerability in the Oracle Hospitality Cruise Shipboard Property ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10360 (Vulnerability in the Oracle WebCenter Content component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10359 (Vulnerability in the Oracle Hyperion BI+ component of Oracle Hyperion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10358 (Vulnerability in the Oracle Hyperion Financial Reporting component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10357 (Vulnerability in the Java SE, Java SE Embedded component of Oracle ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -15402,13 +15402,13 @@
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2017-10354 (Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10353 (Vulnerability in the Oracle Hospitality Hotel Mobile component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10352 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10351 (Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10350 (Vulnerability in the Java SE, Java SE Embedded component of Oracle ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -15444,67 +15444,67 @@
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2017-10344 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10343 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10342 (Vulnerability in the Java Advanced Management Console component of ...)
NOT-FOR-US: Java Advanced Management Console
CVE-2017-10341 (Vulnerability in the Java Advanced Management Console component of ...)
NOT-FOR-US: Java Advanced Management Console
CVE-2017-10340 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10339 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10338 (Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10337 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10336 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10335 (Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10334 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10333 (Vulnerability in the Siebel UI Framework component of Oracle Siebel ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10332 (Vulnerability in the Oracle Universal Work Queue component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10331 (Vulnerability in the Oracle Application Object Library component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10330 (Vulnerability in the Oracle Common Applications component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10329 (Vulnerability in the Oracle Global Order Promising component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10328 (Vulnerability in the Oracle Application Object Library component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10327 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10326 (Vulnerability in the Oracle Common Applications Calendar component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10325 (Vulnerability in the Oracle Common Applications Calendar component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10324 (Vulnerability in the Oracle Applications Technology Stack component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10323 (Vulnerability in the Oracle Web Applications Desktop Integrator ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10322 (Vulnerability in the Oracle Common Applications Calendar component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10321 (Vulnerability in the Core RDBMS component of Oracle Database Server. ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10320 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #878398)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL
CVE-2017-10319 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10318 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10317 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10316 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10315 (Vulnerability in the Siebel UI Framework component of Oracle Siebel ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10314 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #878398)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
@@ -15514,36 +15514,36 @@
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL
CVE-2017-10312 (Vulnerability in the Oracle Hyperion BI+ component of Oracle Hyperion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10311 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #878398)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL
CVE-2017-10310 (Vulnerability in the Oracle Hyperion Financial Reporting component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10309 (Vulnerability in the Java SE component of Oracle Java SE ...)
- openjdk-9 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
- openjdk-8 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
CVE-2017-10308 (Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10307
RESERVED
CVE-2017-10306 (Vulnerability in the PeopleSoft Enterprise HCM component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10305
RESERVED
CVE-2017-10304 (Vulnerability in the PeopleSoft Enterprise HCM component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10303 (Vulnerability in the Oracle Interaction Center Intelligence component ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10302 (Vulnerability in the Siebel UI Framework component of Oracle Siebel ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10301
RESERVED
CVE-2017-10300 (Vulnerability in the Siebel CRM Desktop component of Oracle Siebel CRM ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10299 (Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10298
RESERVED
CVE-2017-10297
@@ -15565,7 +15565,7 @@
CVE-2017-10293 (Vulnerability in the Java SE component of Oracle Java SE ...)
TODO: probably specific to Oracle Java
CVE-2017-10292 (Vulnerability in the RDBMS Security component of Oracle Database ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10291
RESERVED
CVE-2017-10290
@@ -15575,7 +15575,7 @@
CVE-2017-10288
RESERVED
CVE-2017-10287 (Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10286 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #878398)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
@@ -15603,7 +15603,7 @@
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2017-10280 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10279 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #878398)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
@@ -15617,7 +15617,7 @@
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL
CVE-2017-10275 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10274 (Vulnerability in the Java SE component of Oracle Java SE ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -15629,9 +15629,9 @@
CVE-2017-10272
RESERVED
CVE-2017-10271 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10270 (Vulnerability in the Oracle Identity Manager Connector component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10269
RESERVED
CVE-2017-10268 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
@@ -15644,19 +15644,19 @@
CVE-2017-10266
RESERVED
CVE-2017-10265 (Vulnerability in the Oracle Integrated Lights Out Manager (ILOM) ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10264 (Vulnerability in the Siebel UI Framework component of Oracle Siebel ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10263 (Vulnerability in the Siebel UI Framework component of Oracle Siebel ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10262
RESERVED
CVE-2017-10261 (Vulnerability in the XML Database component of Oracle Database Server. ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10260 (Vulnerability in the Oracle Integrated Lights Out Manager (ILOM) ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10259 (Vulnerability in the Oracle Access Manager component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10258 (Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub ...)
NOT-FOR-US: PeopleSoft
CVE-2017-10257 (Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub ...)
@@ -15815,13 +15815,13 @@
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2017-10197 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10196 (Vulnerability in the Oracle Outside In Technology component of Oracle ...)
NOT-FOR-US: Oracle
CVE-2017-10195 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
NOT-FOR-US: Oracle
CVE-2017-10194 (Vulnerability in the Oracle Integrated Lights Out Manager (ILOM) ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10193 (Vulnerability in the Java SE, Java SE Embedded component of Oracle ...)
{DSA-3954-1 DSA-3919-1 DLA-1073-1}
- openjdk-8 8u141-b15-1
@@ -15833,7 +15833,7 @@
CVE-2017-10191 (Vulnerability in the Oracle Web Analytics component of Oracle ...)
NOT-FOR-US: Oracle
CVE-2017-10190 (Vulnerability in the Java VM component of Oracle Database Server. ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10189 (Vulnerability in the Hospitality Suite8 component of Oracle ...)
NOT-FOR-US: Oracle
CVE-2017-10188 (Vulnerability in the Hospitality Hotel Mobile component of Oracle ...)
@@ -15888,25 +15888,25 @@
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL
CVE-2017-10166 (Vulnerability in the Oracle Security Service component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10165 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #878398)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixMSQL
CVE-2017-10164 (Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10163 (Vulnerability in the Oracle Business Intelligence Enterprise Edition ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10162 (Vulnerability in the Siebel Core - Server Framework component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10161 (Vulnerability in the Oracle Engineering Data Management component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10160 (Vulnerability in the Primavera P6 Enterprise Project Portfolio ...)
NOT-FOR-US: Primavera
CVE-2017-10159 (Vulnerability in the Oracle Communications Policy Management component ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10158 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10157 (Vulnerability in the BI Publisher component of Oracle Fusion ...)
NOT-FOR-US: Oracle
CVE-2017-10156 (Vulnerability in the BI Publisher component of Oracle Fusion ...)
@@ -15918,9 +15918,9 @@
CVE-2017-10154 (Vulnerability in the Oracle Access Manager component of Oracle Fusion ...)
NOT-FOR-US: Java Advanced Management Console
CVE-2017-10153 (Vulnerability in the Oracle Communications WebRTC Session Controller ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10152 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10151
RESERVED
CVE-2017-10150 (Vulnerability in the Primavera Unifier component of Oracle Primavera ...)
@@ -16102,7 +16102,7 @@
CVE-2017-10100 (Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub ...)
NOT-FOR-US: Oracle
CVE-2017-10099 (Vulnerability in the SPARC M7, T7, S7 based Servers component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10098 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
NOT-FOR-US: Oracle
CVE-2017-10097 (Vulnerability in the Oracle Hospitality Reporting and Analytics ...)
@@ -16171,7 +16171,7 @@
{DSA-3919-1}
- openjdk-8 8u141-b15-1
CVE-2017-10077 (Vulnerability in the Oracle Applications DBA component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10076 (Vulnerability in the Oracle Hospitality Simphony First Edition Venue ...)
NOT-FOR-US: Oracle
CVE-2017-10075 (Vulnerability in the Oracle WebCenter Content component of Oracle ...)
@@ -16203,9 +16203,9 @@
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2017-10066 (Vulnerability in the Oracle Applications Technology Stack component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10065 (Vulnerability in the Oracle Retail Point-of-Service component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10064 (Vulnerability in the Hospitality WebSuite8 Cloud Service component of ...)
NOT-FOR-US: Oracle
CVE-2017-10063 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
@@ -16215,7 +16215,7 @@
CVE-2017-10061 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
NOT-FOR-US: Oracle
CVE-2017-10060 (Vulnerability in the Oracle Business Intelligence Enterprise Edition ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10059 (Vulnerability in the BI Publisher component of Oracle Fusion ...)
NOT-FOR-US: Oracle
CVE-2017-10058 (Vulnerability in the Oracle Business Intelligence Enterprise Edition ...)
@@ -16225,9 +16225,9 @@
CVE-2017-10056 (Vulnerability in the Oracle Hospitality 9700 component of Oracle ...)
NOT-FOR-US: Oracle
CVE-2017-10055 (Vulnerability in the Oracle iPlanet Web Server component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10054 (Vulnerability in the Oracle Hospitality Cruise Materials Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10053 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
{DSA-3954-1 DSA-3919-1 DLA-1073-1}
- openjdk-8 8u141-b15-1
@@ -16238,9 +16238,9 @@
CVE-2017-10052 (Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain ...)
NOT-FOR-US: Oracle
CVE-2017-10051 (Vulnerability in the Oracle Outside In Technology component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10050 (Vulnerability in the Oracle Hospitality Suite8 component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10049 (Vulnerability in the Siebel Core CRM component of Oracle Siebel CRM ...)
NOT-FOR-US: Oracle
CVE-2017-10048 (Vulnerability in the Oracle Enterprise Repository component of Oracle ...)
@@ -16266,15 +16266,15 @@
CVE-2017-10038 (Vulnerability in the Primavera P6 Enterprise Project Portfolio ...)
NOT-FOR-US: Oracle
CVE-2017-10037 (Vulnerability in the Oracle BI Publisher component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10036 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
NOT-FOR-US: Oracle
CVE-2017-10035 (Vulnerability in the BI Publisher component of Oracle Fusion ...)
NOT-FOR-US: Oracle
CVE-2017-10034 (Vulnerability in the Oracle BI Publisher component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10033 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10032 (Vulnerability in the Oracle Transportation Management component of ...)
NOT-FOR-US: Oracle
CVE-2017-10031 (Vulnerability in the Oracle Communications Convergence component of ...)
@@ -16288,7 +16288,7 @@
CVE-2017-10027 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
NOT-FOR-US: Oracle
CVE-2017-10026 (Vulnerability in the Oracle SOA Suite component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10025 (Vulnerability in the BI Publisher component of Oracle Fusion ...)
NOT-FOR-US: Oracle
CVE-2017-10024 (Vulnerability in the BI Publisher component of Oracle Fusion ...)
@@ -16312,7 +16312,7 @@
CVE-2017-10015 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
NOT-FOR-US: Oracle
CVE-2017-10014 (Vulnerability in the Oracle Hospitality Hotel Mobile component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2017-10013 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
NOT-FOR-US: Oracle
CVE-2017-10012 (Vulnerability in the Oracle FLEXCUBE Private Banking component of ...)
@@ -47128,7 +47128,7 @@
CVE-2016-8749 (Apache Camel's Jackson and JacksonXML unmarshalling operation are ...)
NOT-FOR-US: Apache Camel
CVE-2016-8748 (In Apache NiFi before 1.0.1 and 1.1.x before 1.1.1, there is a ...)
- TODO: check
+ NOT-FOR-US: Apache NiFi
CVE-2016-8747 (An information disclosure issue was discovered in Apache Tomcat 8.5.7 ...)
- tomcat8 8.5.9-1
[jessie] - tomcat8 <not-affected> (Only affects 8.5.7 to 8.5.9)
@@ -87832,9 +87832,9 @@
CVE-2015-4423
RESERVED
CVE-2015-4422 (The TEEOS module in Huawei Mate 7 (Mate7-TL10) smartphone before ...)
- TODO: check
+ NOT-FOR-US: TEEOS module in Huawei Mate 7
CVE-2015-4421 (The tzdriver module in Huawei Mate 7 (Mate7-TL10) smartphone before ...)
- TODO: check
+ NOT-FOR-US: tzdriver module in Huawei Mate 7
CVE-2015-4420 (Multiple cross-site scripting (XSS) vulnerabilities in Opsview 4.6.2 ...)
NOT-FOR-US: Opsview
CVE-2015-4419
More information about the Secure-testing-commits
mailing list