[Git][security-tracker-team/security-tracker][master] Process NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
94d1daa7 by Salvatore Bonaccorso at 2018-08-03T20:45:47Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -8,21 +8,21 @@ CVE-2018-14912 (cgit_clone_objects in CGit before 1.2.1 has a directory traversa
 	NOTE: https://lists.zx2c4.com/pipermail/cgit/2018-August/004176.html
 	NOTE: https://git.zx2c4.com/cgit/commit/?id=53efaf30b50f095cad8c160488c74bba3e3b2680
 CVE-2018-14911 (A file upload vulnerability exists in ukcms v1.1.7 and earlier. The ...)
-	TODO: check
+	NOT-FOR-US: ukcms
 CVE-2018-14910 (SeaCMS v6.61 allows Remote Code execution by placing PHP code in an ...)
-	TODO: check
+	NOT-FOR-US: SeaCMS
 CVE-2018-14909
 	RESERVED
 CVE-2018-14908 (Samsung Syncthru Web Service V4.05.61 is vulnerable to CSRF on every ...)
-	TODO: check
+	NOT-FOR-US: Samsung Syncthru Web Service
 CVE-2018-14907 (The Web server in 3CX version 15.5.8801.3 is vulnerable to Information ...)
-	TODO: check
+	NOT-FOR-US: 3CX
 CVE-2018-14906 (The Web server in 3CX version 15.5.8801.3 is vulnerable to Reflected ...)
-	TODO: check
+	NOT-FOR-US: 3CX
 CVE-2018-14905 (The Web server in 3CX version 15.5.8801.3 is vulnerable to Reflected ...)
-	TODO: check
+	NOT-FOR-US: 3CX
 CVE-2018-14904 (Samsung Syncthru Web Service V4.05.61 is vulnerable to Multiple ...)
-	TODO: check
+	NOT-FOR-US: Samsung Syncthru Web Service
 CVE-2018-14903
 	RESERVED
 CVE-2018-14902
@@ -488,7 +488,7 @@ CVE-2018-14717
 CVE-2018-14716
 	RESERVED
 CVE-2018-14715 (The endCoinFlip function and throwSlammer function of the smart ...)
-	TODO: check
+	NOT-FOR-US: smart contract implementations for Cryptogs
 CVE-2018-14714
 	RESERVED
 CVE-2018-14713
@@ -825,7 +825,7 @@ CVE-2018-14578
 CVE-2018-14577
 	RESERVED
 CVE-2018-14576 (The mintToken function of a smart contract implementation for ...)
-	TODO: check
+	NOT-FOR-US: smart contract implementation for SunContract
 CVE-2018-14575
 	RESERVED
 CVE-2018-14574 (django.middleware.common.CommonMiddleware in Django 1.11.x before ...)
@@ -968,7 +968,7 @@ CVE-2018-14543 (There exists one NULL pointer dereference vulnerability in ...)
 CVE-2018-14542
 	RESERVED
 CVE-2018-14541 (PHP Scripts Mall Basic B2B Script 2.0.0 has Reflected and Stored XSS ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall Basic B2B Script
 CVE-2018-14540
 	RESERVED
 CVE-2018-14539
@@ -1075,7 +1075,7 @@ CVE-2018-14499
 CVE-2018-14498
 	RESERVED
 CVE-2018-14497 (Tenda D152 ADSL routers allow XSS via a crafted SSID. ...)
-	TODO: check
+	NOT-FOR-US: Tenda D152 ADSL routers
 CVE-2018-14496
 	RESERVED
 CVE-2018-14495



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/94d1daa7cdc900ab7a1fad4805f1517eead88262

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/94d1daa7cdc900ab7a1fad4805f1517eead88262
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180803/0e94fa74/attachment.html>