[Secure-testing-commits] r57004 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Oct 26 21:16:28 UTC 2017 

Author: jmm
Date: 2017-10-26 21:16:28 +0000 (Thu, 26 Oct 2017)
New Revision: 57004

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-26 21:14:44 UTC (rev 57003)
+++ data/CVE/list	2017-10-26 21:16:28 UTC (rev 57004)
@@ -8,7 +8,7 @@
 CVE-2017-15918
 	RESERVED
 CVE-2017-15917 (In Paessler PRTG Network Monitor 17.3.33.2830, it's possible to create ...)
-	TODO: check
+	NOT-FOR-US: Paessler PRTG Network Monitor
 CVE-2017-15908 (In systemd 223 through 235, a remote DNS server can respond with a ...)
 	TODO: check
 CVE-2017-15919 (The ultimate-form-builder-lite plugin before 1.3.7 for WordPress has ...)
@@ -24,7 +24,7 @@
 CVE-2017-15912
 	RESERVED
 CVE-2017-15911 (The Admin Console in Ignite Realtime Openfire Server before 4.1.7 ...)
-	TODO: check
+	NOT-FOR-US: Ignite Realtime Openfire Server
 CVE-2017-15910
 	RESERVED
 CVE-2017-15909 (D-Link DGS-1500 Ax devices before 2.51B021 have a hardcoded password, ...)
@@ -1243,7 +1243,7 @@
 CVE-2017-15367
 	RESERVED
 CVE-2017-15366 (Before Thornberry NDoc version 8.0, laptop clients and the server have ...)
-	TODO: check
+	NOT-FOR-US: Thornberry NDoc
 CVE-2017-15365
 	RESERVED
 CVE-2017-15364 (The foreach function in ext/ccsv.c in Ccsv 1.1.0 allows remote ...)
@@ -7294,11 +7294,9 @@
 CVE-2017-13090
 	RESERVED
 	- wget <unfixed>
-	TODO: check
 CVE-2017-13089
 	RESERVED
 	- wget <unfixed>
-	TODO: check
 CVE-2017-13088 (Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows ...)
 	{DSA-3999-1}
 	- wpa 2:2.4-1.1
@@ -23527,7 +23525,7 @@
 CVE-2017-7733
 	RESERVED
 CVE-2017-7732 (A reflected Cross-Site Scripting (XSS) vulnerability in Fortinet ...)
-	TODO: check
+	NOT-FOR-US: Fortinet
 CVE-2017-7731 (A weak password recovery vulnerability in Fortinet FortiPortal ...)
 	NOT-FOR-US: Fortinet FortiPortal
 CVE-2017-7730 (iSmartAlarm cube devices allow Denial of Service. Sending a SYN flood ...)
@@ -24953,7 +24951,7 @@
 CVE-2017-7342
 	RESERVED
 CVE-2017-7341 (An OS Command Injection vulnerability in Fortinet FortiWLC 6.1-2 ...)
-	TODO: check
+	NOT-FOR-US: Fortinet
 CVE-2017-7340
 	RESERVED
 CVE-2017-7339 (A Cross-Site Scripting vulnerability in Fortinet FortiPortal versions ...)
@@ -24965,7 +24963,7 @@
 CVE-2017-7336 (A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0 and ...)
 	NOT-FOR-US: Fortinet
 CVE-2017-7335 (A Cross-Site Scripting (XSS) vulnerability in Fortinet FortiWLC 6.1-x ...)
-	TODO: check
+	NOT-FOR-US: Fortinet
 CVE-2017-7334
 	RESERVED
 CVE-2017-7333
@@ -29037,7 +29035,7 @@
 CVE-2017-5997 (The SAP Message Server HTTP daemon in SAP KERNEL 7.21-7.49 allows ...)
 	NOT-FOR-US: SAP Message Server
 CVE-2017-5996 (The agent in Bomgar Remote Support 15.2.x before 15.2.3, 16.1.x before ...)
-	TODO: check
+	NOT-FOR-US: Bomgar Remote Support
 CVE-2017-5995 (The NetApp ONTAP Select Deploy administration utility 2.0 through ...)
 	NOT-FOR-US: NetApp ONTAP Select Deploy administration utility
 CVE-2017-14431 (Memory leak in Xen 3.3 through 4.8.x allows guest OS users to cause a ...)
@@ -35680,7 +35678,7 @@
 CVE-2017-3772
 	RESERVED
 CVE-2017-3771 (System boot process is not adequately secured In Lenovo E95 and ...)
-	TODO: check
+	NOT-FOR-US: Lenovo
 CVE-2017-3770 (Privilege escalation vulnerability in LXCA versions earlier than 1.3.2 ...)
 	NOT-FOR-US: Lenovo LXCA
 CVE-2017-3769

More information about the Secure-testing-commits mailing list