[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
jmm at debian.org
Mon Apr 2 10:10:55 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
95d124f3 by Moritz Muehlenhoff at 2018-04-02T11:10:22+02:00
NFUs
drop one TODO, no real information around
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,13 +1,13 @@
CVE-2018-9176
RESERVED
CVE-2018-9175 (DedeCMS 5.7 allows remote attackers to execute arbitrary PHP code via ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2018-9174 (sys_verifies.php in DedeCMS 5.7 allows remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2018-9173 (Cross-site scripting (XSS) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: GetSimple CMS
CVE-2018-9172 (The Iptanus WordPress File Upload plugin before 4.3.3 for WordPress ...)
- TODO: check
+ NOT-FOR-US: Wordpress plugin
CVE-2018-9171
RESERVED
CVE-2018-9170
@@ -4441,7 +4441,6 @@ CVE-2012-6709 (ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate
NOTE: tested links2 against badssl.com, no apparent issue back in wheezy
NOTE: src:links2/2.6-1 adds verify-ssl-certs-510417.diff to verify SSL certs.
NOTE: src:links2 upstream in 2.11 adds support for verifying SSL certificates.
- TODO: double check links2 again, since #694658 claims not all issues are fixed
CVE-2018-7422 (A Local File Inclusion vulnerability in the Site Editor plugin through ...)
NOT-FOR-US: Site Editor plugin for WordPress
CVE-2018-7421 (In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the DMP dissector ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/95d124f34af782268a68006f88ff800c75f051d9
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/95d124f34af782268a68006f88ff800c75f051d9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180402/6b72a78e/attachment.html>
More information about the debian-security-tracker-commits
mailing list