[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs

Tue Apr 10 21:35:32 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5d41ebca by Salvatore Bonaccorso at 2018-04-10T22:35:17+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7,7 +7,7 @@ CVE-2018-9987
 CVE-2018-9986
 	RESERVED
 CVE-2018-9985 (The front page of MetInfo 6.0 allows XSS by sending a feedback message ...)
-	TODO: check
+	NOT-FOR-US: MetInfo
 CVE-2018-9984
 	RESERVED
 CVE-2018-9983
@@ -2129,9 +2129,9 @@ CVE-2018-9040 (In Advanced SystemCare Ultimate 11.0.1.58, the driver file ...)
 CVE-2018-9039 (In Octopus Deploy 2.0 and later before 2018.3.7, an authenticated user, ...)
 	NOT-FOR-US: Octopus Deploy
 CVE-2018-9038 (Monstra CMS 3.0.4 allows remote attackers to delete files via an ...)
-	TODO: check
+	NOT-FOR-US: Monstra CMS
 CVE-2018-9037 (Monstra CMS 3.0.4 allows remote code execution via an upload_file ...)
-	TODO: check
+	NOT-FOR-US: Monstra CMS
 CVE-2018-9036
 	RESERVED
 CVE-2018-9035 (CSV Injection vulnerability in ExportToCsvUtf8.php of the Contact Form ...)
@@ -2851,7 +2851,7 @@ CVE-2018-8774
 CVE-2018-8773
 	RESERVED
 CVE-2018-8772 (Coship RT3052 4.0.0.48 devices allow XSS via a crafted SSID field on ...)
-	TODO: check
+	NOT-FOR-US: Coship RT3052 4.0.0.48 devices
 CVE-2018-8771
 	RESERVED
 CVE-2018-8770 (Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via ...)
@@ -9213,9 +9213,9 @@ CVE-2017-18103
 CVE-2017-18102
 	RESERVED
 CVE-2017-18101 (Various administrative external system import resources in Atlassian ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2017-18100 (The agile wallboard gadget in Atlassian Jira before version 7.8.1 ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2017-18099
 	RESERVED
 CVE-2017-18098 (The searchrequest-xml resource in Atlassian Jira before version 7.6.1 ...)
@@ -12064,7 +12064,7 @@ CVE-2018-5465 (A Session Fixation issue was discovered in Belden Hirschmann RS, 
 CVE-2018-5464 (Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an ...)
 	NOT-FOR-US: Philips Intellispace Portal
 CVE-2018-5463 (A structured exception handler overflow vulnerability in Leao ...)
-	TODO: check
+	NOT-FOR-US: Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA
 CVE-2018-5462 (Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an ...)
 	NOT-FOR-US: Philips Intellispace Portal
 CVE-2018-5461 (An Inadequate Encryption Strength issue was discovered in Belden ...)
@@ -12735,7 +12735,7 @@ CVE-2018-5229
 CVE-2018-5228
 	RESERVED
 CVE-2018-5227 (Various administrative application link resources in Atlassian ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2018-5226
 	RESERVED
 CVE-2018-5225 (In browser editing in Atlassian Bitbucket Server from version 4.13.0 ...)
@@ -23304,7 +23304,7 @@ CVE-2018-1219 (EMC RSA Archer, versions prior to 6.2.0.8, contains an improper a
 CVE-2018-1218 (In Dell EMC NetWorker versions prior to 9.2.1.1, versions prior to ...)
 	NOT-FOR-US: EMC NetWorker
 CVE-2018-1217 (Avamar Installation Manager in Dell EMC Avamar Server 7.3.1, 7.4.1, ...)
-	TODO: check
+	NOT-FOR-US: EMC Avamar Server
 CVE-2018-1216 (A hard-coded password vulnerability was discovered in vApp Manager ...)
 	NOT-FOR-US: EMC
 CVE-2018-1215 (An arbitrary file upload vulnerability was discovered in vApp Manager ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5d41ebca906a313450ecf37f4a3b4c5dbc6f0da1

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5d41ebca906a313450ecf37f4a3b4c5dbc6f0da1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180410/64238285/attachment-0001.html>
