[Git][security-tracker-team/security-tracker][master] NFUs

Fri Apr 27 10:15:43 BST 2018

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b383f63e by Moritz Muehlenhoff at 2018-04-27T11:12:41+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -512,7 +512,7 @@ CVE-2018-10239
 CVE-2018-10238 (bvlc.c in skarg BACnet Protocol Stack 0.8.5 has a buffer overflow in ...)
 	NOT-FOR-US: skarg BACnet Protocol Stack
 CVE-2018-10237 (Unbounded memory allocation in Google Guava 11.0 through 24.x before ...)
-	TODO: check
+	NOT-FOR-US: Google Guava
 CVE-2018-10236 (POSCMS 3.2.18 allows remote attackers to execute arbitrary PHP code via ...)
 	NOT-FOR-US: POSCMS
 CVE-2018-10235 (POSCMS 3.2.10 allows remote attackers to execute arbitrary PHP code via ...)
@@ -17251,7 +17251,7 @@ CVE-2018-3857
 CVE-2018-3856
 	RESERVED
 CVE-2018-3855 (In Hyland Perceptive Document Filters 11.4.0.2647 - x86/x64 ...)
-	TODO: check
+	NOT-FOR-US: Hyland Perceptive Document Filters
 CVE-2018-3854
 	RESERVED
 CVE-2018-3853
@@ -17259,7 +17259,7 @@ CVE-2018-3853
 CVE-2018-3852
 	RESERVED
 CVE-2018-3851 (In Hyland Perceptive Document Filters 11.4.0.2647 - x86/x64 ...)
-	TODO: check
+	NOT-FOR-US: Hyland Perceptive Document Filters
 CVE-2018-3850 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
 	NOT-FOR-US: Foxit PDF Reader
 CVE-2018-3849 (In the ffghtb function in NASA CFITSIO 3.42, specially crafted images ...)
@@ -17283,9 +17283,9 @@ CVE-2018-3846 (In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, speciall
 	NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0529
 	NOTE: Mitigated to a crash due to hardened build flags
 CVE-2018-3845 (In Hyland Perceptive Document Filters 11.4.0.2647 - x86/x64 ...)
-	TODO: check
+	NOT-FOR-US: Hyland Perceptive Document Filters
 CVE-2018-3844 (In Hyland Perceptive Document Filters 11.4.0.2647 - x86/x64 ...)
-	TODO: check
+	NOT-FOR-US: Hyland Perceptive Document Filters
 CVE-2018-3843 (An exploitable type confusion vulnerability exists in the way Foxit ...)
 	NOT-FOR-US: Foxit PDF Reader
 CVE-2018-3842 (An exploitable use of an uninitialized pointer vulnerability exists in ...)
@@ -45056,7 +45056,6 @@ CVE-2017-11593 (Cross-site scripting (XSS) vulnerability in the Markdown Preview
 CVE-2017-11592 (There is a Mismatched Memory Management Routines vulnerability in the ...)
 	[experimental] - exiv2 <unfixed> (bug #895568)
 	- exiv2 <not-affected> (printTiffStructure introduced in 0.26)
-	TODO: Report against experimental
 	NOTE: https://github.com/Exiv2/exiv2/issues/56
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1473889
 	NOTE: Not reproducible in wheezy/jessie/stretch/sid(0.25-3.1).



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b383f63e1b08970ee6b78c936bb4063196415249

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b383f63e1b08970ee6b78c936bb4063196415249
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180427/aa57bfa0/attachment-0001.html>
