[Secure-testing-commits] r56220 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Sep 28 11:40:54 UTC 2017 

Author: carnil
Date: 2017-09-28 11:40:54 +0000 (Thu, 28 Sep 2017)
New Revision: 56220

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-28 11:40:43 UTC (rev 56219)
+++ data/CVE/list	2017-09-28 11:40:54 UTC (rev 56220)
@@ -825,13 +825,13 @@
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2730
 	NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=32560
 CVE-2017-14527 (Multiple XML external entity (XXE) vulnerabilities in the OpenText ...)
-	TODO: check
+	NOT-FOR-US: OpenText Documentum Webtop
 CVE-2017-14526 (Multiple XML external entity (XXE) vulnerabilities in the OpenText ...)
-	TODO: check
+	NOT-FOR-US: OpenText Documentum Administrator
 CVE-2017-14525 (Multiple open redirect vulnerabilities in OpenText Documentum Webtop ...)
-	TODO: check
+	NOT-FOR-US: penText Documentum Webtop
 CVE-2017-14524 (Multiple open redirect vulnerabilities in OpenText Documentum ...)
-	TODO: check
+	NOT-FOR-US: OpenText Documentum Administrator
 CVE-2017-14523
 	RESERVED
 CVE-2017-14522
@@ -4346,7 +4346,7 @@
 CVE-2017-13130 (mcmnm in BMC Patrol allows local users to gain privileges via a crafted ...)
 	NOT-FOR-US: BMC Patrol
 CVE-2017-13129 (Cross-site request forgery (CSRF) vulnerability in ZKTeco ZKTime Web ...)
-	TODO: check
+	NOT-FOR-US: ZKTeco ZKTime Web
 CVE-2017-13128
 	RESERVED
 CVE-2017-13127
@@ -7265,35 +7265,35 @@
 CVE-2017-12241
 	RESERVED
 CVE-2017-12240 (The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12239 (A vulnerability in motherboard console ports of line cards for Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12238 (A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12237 (A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12236 (A vulnerability in the implementation of the Locator/ID Separation ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12235 (A vulnerability in the implementation of the PROFINET Discovery and ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12234 (Multiple vulnerabilities in the implementation of the Common Industrial ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12233 (Multiple vulnerabilities in the implementation of the Common Industrial ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12232 (A vulnerability in the implementation of a protocol in Cisco Integrated ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12231 (A vulnerability in the implementation of Network Address Translation ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12230 (A vulnerability in the web-based user interface (web UI) of Cisco IOS ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12229 (A vulnerability in the REST API of the web-based user interface (web ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12228 (A vulnerability in the Cisco Network Plug and Play application of Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12227 (A vulnerability in the SQL database interface for Cisco Emergency ...)
 	NOT-FOR-US: Cisco
 CVE-2017-12226 (A vulnerability in the web-based Wireless Controller GUI of Cisco IOS ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12225 (A vulnerability in the web functionality of the Cisco Prime LAN ...)
 	NOT-FOR-US: Cisco
 CVE-2017-12224 (A vulnerability in the ability for guest users to join meetings via a ...)
@@ -7301,7 +7301,7 @@
 CVE-2017-12223 (A vulnerability in the ROM Monitor (ROMMON) code of Cisco IR800 ...)
 	NOT-FOR-US: Cisco
 CVE-2017-12222 (A vulnerability in the wireless controller manager of Cisco IOS XE ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2017-12221 (A vulnerability in the web framework of Cisco Firepower Management ...)
 	NOT-FOR-US: Cisco
 CVE-2017-12220 (A vulnerability in the web-based management interface of Cisco ...)
@@ -81594,7 +81594,7 @@
 CVE-2015-5614
 	REJECTED
 CVE-2015-5613 (Cross-site scripting (XSS) vulnerability in October CMS build 271 and ...)
-	TODO: check
+	NOT-FOR-US: October CMS
 CVE-2015-5612 (Cross-site scripting (XSS) vulnerability in October CMS build 271 and ...)
 	NOT-FOR-US: October CMS
 CVE-2015-5623 (WordPress before 4.2.3 does not properly verify the edit_posts ...)

More information about the Secure-testing-commits mailing list