[Secure-testing-commits] r55863 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Sep 18 09:40:16 UTC 2017 

Author: carnil
Date: 2017-09-18 09:40:16 +0000 (Mon, 18 Sep 2017)
New Revision: 55863

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-18 09:32:27 UTC (rev 55862)
+++ data/CVE/list	2017-09-18 09:40:16 UTC (rev 55863)
@@ -91,7 +91,7 @@
 CVE-2017-14535
 	RESERVED
 CVE-2017-14534 (Cross Site Scripting (XSS) exists in NexusPHP 1.5.beta5.20120707 via ...)
-	TODO: check
+	NOT-FOR-US: NexusPHP
 CVE-2017-14533 (ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c. ...)
 	- imagemagick <unfixed> (unimportant)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/648
@@ -108,7 +108,7 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/69967f4161bd14d8e03ea463d6545da442a6ea78
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/1385a09732c261f1f403a9af6700979ca56c76d3
 CVE-2017-14530 (WP_Admin_UI in the Crony Cronjob Manager plugin before 0.4.7 for ...)
-	TODO: check
+	NOT-FOR-US: Crony Cronjob Manager plugin for WordPress
 CVE-2017-14529 (The pe_print_idata function in peXXigen.c in the Binary File Descriptor ...)
 	- binutils <unfixed>
 	[stretch] - binutils <ignored> (Minor issue)
@@ -153,21 +153,21 @@
 CVE-2017-14516
 	RESERVED
 CVE-2017-14515 (Heap-based Buffer Overflow on Tenda W15E devices before 15.11.0.14 ...)
-	TODO: check
+	NOT-FOR-US: Tenda W15E devices
 CVE-2017-14514 (Directory Traversal on Tenda W15E devices before 15.11.0.14 allows ...)
-	TODO: check
+	NOT-FOR-US: Tenda W15E devices
 CVE-2017-14513 (Directory traversal vulnerability in MetInfo 5.3.17 allows remote ...)
-	TODO: check
+	NOT-FOR-US: MetInfo
 CVE-2017-14512 (NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via ...)
-	TODO: check
+	NOT-FOR-US: NexusPHP
 CVE-2017-14511 (An issue was discovered in SAP E-Recruiting (aka ERECRUIT) 605 through ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2017-14510 (An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before ...)
-	TODO: check
+	NOT-FOR-US: SugarCRM
 CVE-2017-14509 (An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before ...)
-	TODO: check
+	NOT-FOR-US: SugarCRM
 CVE-2017-14508 (An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before ...)
-	TODO: check
+	NOT-FOR-US: SugarCRM
 CVE-2016-10511
 	RESERVED
 CVE-2017-14507

More information about the Secure-testing-commits mailing list