[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Thu Apr 12 21:36:53 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
14ba3986 by Salvatore Bonaccorso at 2018-04-12T22:36:10+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3,17 +3,17 @@ CVE-2018-10076
CVE-2018-10075
RESERVED
CVE-2018-10073 (joyplus-cms 1.6.0 has XSS in manager/admin_vod.php via the keyword ...)
- TODO: check
+ NOT-FOR-US: joyplus-cms
CVE-2018-10072 (windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers ...)
- TODO: check
+ NOT-FOR-US: WinDriver
CVE-2018-10071 (windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers ...)
- TODO: check
+ NOT-FOR-US: WinDriver
CVE-2018-10070
RESERVED
CVE-2018-10069
RESERVED
CVE-2018-10068 (The jDownloads extension before 3.2.59 for Joomla! has XSS. ...)
- TODO: check
+ NOT-FOR-US: jDownloads extension for Joomla!
CVE-2018-10067
RESERVED
CVE-2018-10066
@@ -23,7 +23,7 @@ CVE-2018-10065
CVE-2018-10064
RESERVED
CVE-2018-10063 (The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: Convert Forms extension for Joomla!
CVE-2018-10062
RESERVED
CVE-2018-10074 (The hi3660_stub_clk_probe function in ...)
@@ -515,9 +515,9 @@ CVE-2018-9845
CVE-2018-9844 (The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress ...)
NOT-FOR-US: Iptanus WordPress File Upload plugin for WordPress
CVE-2018-9843 (The REST API in CyberArk Password Vault Web Access before 9.9.5 and ...)
- TODO: check
+ NOT-FOR-US: CyberArk Password Vault Web Access
CVE-2018-9842 (CyberArk Password Vault before 9.7 allows remote attackers to obtain ...)
- TODO: check
+ NOT-FOR-US: CyberArk Password Vault
CVE-2018-9841 (The export function in libavfilter/vf_signature.c in FFmpeg through ...)
- ffmpeg <unfixed> (low)
[stretch] - ffmpeg <postponed> (Can wait until the next ffmpeg 3.2.x release)
@@ -2082,7 +2082,7 @@ CVE-2018-9157 (** DISPUTED ** An issue was discovered on AXIS M1033-W (IP camera
CVE-2018-9156 (** DISPUTED ** An issue was discovered on AXIS P1354 (IP camera) ...)
NOT-FOR-US: AXIS
CVE-2018-9155 (Cross-site scripting (XSS) vulnerability in Open-AudIT Professional ...)
- TODO: check
+ NOT-FOR-US: Open-AudIT Professional
CVE-2018-9154
RESERVED
CVE-2018-9153
@@ -2186,7 +2186,7 @@ CVE-2018-9120 (In Crea8social 2018.2, there is Stored Cross-Site Scripting via a
CVE-2018-9119 (An attacker with physical access to a BrilliantTS FUZE card (MCU ...)
NOT-FOR-US: BrilliantTS FUZE card
CVE-2018-9118 (exports/download.php in the 99 Robots WP Background Takeover ...)
- TODO: check
+ NOT-FOR-US: 99 Robots WP Background Takeover Advertisements plugin for WordPress
CVE-2018-9117 (WireMock before 2.16.0 contains a vulnerability that allows a remote ...)
NOT-FOR-US: WireMock
CVE-2018-9116 (An XXE vulnerability within WireMock before 2.16.0 allows a remote ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/14ba3986c34172327474b8b894e8ae7b18dfeffd
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/14ba3986c34172327474b8b894e8ae7b18dfeffd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180412/9863a720/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list