[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: NFUs
Moritz Muehlenhoff
jmm at debian.org
Wed Apr 4 20:38:44 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1d97aac7 by Moritz Muehlenhoff at 2018-04-04T21:37:22+02:00
NFUs
- - - - -
45f7bec1 by Moritz Muehlenhoff at 2018-04-04T21:38:28+02:00
Merge branch 'master' of salsa.debian.org:security-tracker-team/security-tracker
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -124,7 +124,7 @@ CVE-2018-9249
CVE-2018-9248
RESERVED
CVE-2018-9247 (The upsql function in \Lib\Lib\Action\Admin\DataAction.class.php in ...)
- TODO: check
+ NOT-FOR-US: Gxlcms QY
CVE-2018-9246
RESERVED
CVE-2018-9245
@@ -140,17 +140,17 @@ CVE-2018-9241
CVE-2018-9239
RESERVED
CVE-2018-9238 (proberv.php in Yahei-PHP Proberv 0.4.7 has XSS via the funName ...)
- TODO: check
+ NOT-FOR-US: Yahei-PHP Proberv
CVE-2018-9237 (iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site ...)
- TODO: check
+ NOT-FOR-US: iScripts EasyCreate
CVE-2018-9236 (iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site ...)
- TODO: check
+ NOT-FOR-US: iScripts EasyCreate
CVE-2018-9235 (iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query ...)
- TODO: check
+ NOT-FOR-US: iScripts SonicBB
CVE-2017-18256 (Brave Browser before 0.13.0 allows remote attackers to cause a denial ...)
- TODO: check
+ NOT-FOR-US: Brave Browser
CVE-2016-10718 (Brave Browser before 0.13.0 allows a tab to close itself even if the ...)
- TODO: check
+ NOT-FOR-US: Brave Browser
CVE-2018-9234 (GnuPG 2.2.4 and 2.2.5 does not enforce a configuration in which key ...)
TODO: check
CVE-2018-9240 (ncmpc through 0.29 is prone to a NULL pointer dereference flaw. If a ...)
@@ -60108,7 +60108,7 @@ CVE-2017-5705 (Multiple buffer overflows in kernel in Intel Manageability Engine
CVE-2017-5704
RESERVED
CVE-2017-5703 (Configuration of SPI Flash in platforms based on multiple Intel ...)
- TODO: check
+ NOT-FOR-US: Intel
CVE-2017-5702
RESERVED
CVE-2017-5701 (Insecure platform configuration in system firmware for Intel ...)
@@ -65265,7 +65265,7 @@ CVE-2017-4030
CVE-2017-4029
REJECTED
CVE-2017-4028 (Maliciously misconfigured registry vulnerability in all Microsoft ...)
- TODO: check
+ NOT-FOR-US: MacAfee
CVE-2017-4027
REJECTED
CVE-2017-4026
@@ -65377,7 +65377,7 @@ CVE-2017-3974
CVE-2017-3973
REJECTED
CVE-2017-3972 (Infrastructure-based foot printing vulnerability in the web interface ...)
- TODO: check
+ NOT-FOR-US: McAfee
CVE-2017-3971
RESERVED
CVE-2017-3970
@@ -70160,9 +70160,9 @@ CVE-2017-2495 (An issue was discovered in certain Apple products. iOS before 10.
CVE-2017-2494 (An issue was discovered in certain Apple products. macOS before ...)
NOT-FOR-US: Apple
CVE-2017-2493 (An issue was discovered in certain Apple products. iOS before 10.3 is ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2017-2492 (An issue was discovered in certain Apple products. iOS before 10.3 is ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2017-2491 (Use after free vulnerability in the String.replace method ...)
NOT-FOR-US: Apple Safari
CVE-2017-2490 (An issue was discovered in certain Apple products. iOS before 10.3 is ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/d0b51f99e2801e54a124c83f33f2ba58093413cb...45f7bec184eac47adad361ac9117519d5fea5331
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/d0b51f99e2801e54a124c83f33f2ba58093413cb...45f7bec184eac47adad361ac9117519d5fea5331
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180404/4a89addb/attachment.html>
More information about the debian-security-tracker-commits
mailing list