[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed Apr 11 21:19:41 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3a3e2c28 by Salvatore Bonaccorso at 2018-04-11T22:19:23+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -27,27 +27,27 @@ CVE-2018-10035
CVE-2018-10034
RESERVED
CVE-2018-10033 (CMS Made Simple (aka CMSMS) 2.2.7 has Stored XSS in admin/siteprefs.php ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2018-10032 (CMS Made Simple (aka CMSMS) 2.2.7 has Reflected XSS in ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2018-10031 (CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2018-10030 (CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in admin/siteprefs.php. ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2018-10029 (CMS Made Simple (aka CMSMS) 2.2.7 has Reflected XSS in ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2018-10028 (joyplus-cms 1.6.0 allows remote attackers to obtain sensitive ...)
- TODO: check
+ NOT-FOR-US: joyplus-cms
CVE-2018-10027
RESERVED
CVE-2018-10026 (The WeChat module in YzmCMS 3.7.1 has reflected XSS via the ...)
- TODO: check
+ NOT-FOR-US: WeChat module in YzmCMS
CVE-2018-10025
RESERVED
CVE-2018-10024 (ubiQuoss Switch VP5208A creates a bcm_password file at /cgi-bin/ with ...)
- TODO: check
+ NOT-FOR-US: ubiQuoss Switch VP5208A
CVE-2018-10023 (Catfish CMS V4.7.21 allows XSS via the pinglun parameter to ...)
- TODO: check
+ NOT-FOR-US: Catfish CMS
CVE-2018-10022
RESERVED
CVE-2018-10021 (drivers/scsi/libsas/sas_scsi_host.c in the Linux kernel before 4.16 ...)
@@ -2511,9 +2511,9 @@ CVE-2018-8956
CVE-2018-8955
RESERVED
CVE-2018-8954 (CA Workload Control Center before r11.4 SP6 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: CA Workload Control Center
CVE-2018-8953 (CA Workload Automation AE before r11.3.6 SP7 allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: CA Workload Automation AE
CVE-2018-8952
RESERVED
CVE-2018-8951
@@ -4923,7 +4923,7 @@ CVE-2018-7932
CVE-2018-7931
RESERVED
CVE-2018-7930 (The Near Field Communication (NFC) module in Mate 9 Huawei mobile ...)
- TODO: check
+ NOT-FOR-US: Mate 9 Huawei mobile phones
CVE-2018-7929
RESERVED
CVE-2018-7928
@@ -22162,7 +22162,7 @@ CVE-2018-1485
CVE-2018-1484
RESERVED
CVE-2018-1483 (IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2018-1482
RESERVED
CVE-2018-1481
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3a3e2c2844f1164ba8e611ef91d7d248b872e33f
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3a3e2c2844f1164ba8e611ef91d7d248b872e33f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180411/11befe49/attachment.html>
More information about the debian-security-tracker-commits
mailing list