[Secure-testing-commits] r56229 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Sep 29 04:25:57 UTC 2017
Author: carnil
Date: 2017-09-29 04:25:57 +0000 (Fri, 29 Sep 2017)
New Revision: 56229
Modified:
data/CVE/list
Log:
Process NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-28 21:10:16 UTC (rev 56228)
+++ data/CVE/list 2017-09-29 04:25:57 UTC (rev 56229)
@@ -905,7 +905,7 @@
CVE-2016-10511 (The Twitter iOS client versions 6.62 and 6.62.1 fail to validate ...)
NOT-FOR-US: Twitter iOS client
CVE-2017-14507 (Multiple SQL injection vulnerabilities in the Content Timeline plugin ...)
- TODO: check
+ NOT-FOR-US: Content Timeline plugin for WordPress
CVE-2017-14506 (geminabox (aka Gem in a Box) before 0.13.6 has XSS, as demonstrated by ...)
NOT-FOR-US: geminabox
CVE-2017-14505 (DrawGetStrokeDashArray in wand/drawing-wand.c in ImageMagick 7.0.7-1 ...)
@@ -11675,7 +11675,7 @@
CVE-2017-10702
RESERVED
CVE-2017-10701 (Cross site scripting (XSS) vulnerability in SAP Enterprise Portal 7.50 ...)
- TODO: check
+ NOT-FOR-US: SAP Enterprise Portal
CVE-2017-10700 (In the medialibrary component in QNAP NAS 4.3.3.0229, an ...)
NOT-FOR-US: QNAP
CVE-2017-10699 (avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before ...)
More information about the Secure-testing-commits
mailing list