[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Aug 6 21:19:41 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
682ca3f3 by Salvatore Bonaccorso at 2018-08-06T20:19:08Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -297,43 +297,43 @@ CVE-2018-14980
 CVE-2018-14979
 	RESERVED
 CVE-2018-14978 (An issue was discovered in QCMS 3.0.1. CSRF exists via the ...)
-	TODO: check
+	NOT-FOR-US: QCMS
 CVE-2018-14977 (An issue was discovered in QCMS 3.0.1. ...)
-	TODO: check
+	NOT-FOR-US: QCMS
 CVE-2018-14976 (An issue was discovered in QCMS 3.0.1. ...)
 	TODO: check
 CVE-2018-14975 (An issue was discovered in QCMS 3.0.1. ...)
-	TODO: check
+	NOT-FOR-US: QCMSQCMS
 CVE-2018-14974 (An issue was discovered in QCMS 3.0.1. ...)
-	TODO: check
+	NOT-FOR-US: QCMS
 CVE-2018-14973 (An issue was discovered in QCMS 3.0.1. ...)
-	TODO: check
+	NOT-FOR-US: QCMS
 CVE-2018-14972 (An issue was discovered in QCMS 3.0.1. ...)
-	TODO: check
+	NOT-FOR-US: QCMS
 CVE-2018-14971 (An issue was discovered in QCMS 3.0.1. ...)
-	TODO: check
+	NOT-FOR-US: QCMS
 CVE-2018-14970 (An issue was discovered in QCMS 3.0.1. ...)
-	TODO: check
+	NOT-FOR-US: QCMS
 CVE-2018-14969 (An issue was discovered in QCMS 3.0.1. ...)
-	TODO: check
+	NOT-FOR-US: QCMS
 CVE-2018-14968 (An issue was discovered in EMLsoft 5.4.5. ...)
-	TODO: check
+	NOT-FOR-US: EMLsoft
 CVE-2018-14967 (An issue was discovered in EMLsoft 5.4.5. ...)
-	TODO: check
+	NOT-FOR-US: EMLsoft
 CVE-2018-14966 (An issue was discovered in EMLsoft 5.4.5. The ...)
-	TODO: check
+	NOT-FOR-US: EMLsoft
 CVE-2018-14965 (An issue was discovered in EMLsoft 5.4.5. The ...)
-	TODO: check
+	NOT-FOR-US: EMLsoft
 CVE-2018-14964 (An issue was discovered in EMLsoft 5.4.5. XSS exists via the ...)
-	TODO: check
+	NOT-FOR-US: EMLsoft
 CVE-2018-14963 (zzcms 8.3 has CSRF via the admin/adminadd.php?action=add URI. ...)
-	TODO: check
+	NOT-FOR-US: zzcms
 CVE-2018-14962 (zzcms 8.3 has stored XSS related to the content variable in ...)
-	TODO: check
+	NOT-FOR-US: zzcms
 CVE-2018-14961 (dl/dl_sendmail.php in zzcms 8.3 has SQL Injection via the sql ...)
-	TODO: check
+	NOT-FOR-US: zzcms
 CVE-2018-14960 (Xiao5uCompany 1.7 has CSRF via admin/Admin.asp. ...)
-	TODO: check
+	NOT-FOR-US: Xiao5uCompany
 CVE-2018-14959 (An issue was discovered in WeaselCMS v0.3.5. CSRF can create new pages ...)
 	NOT-FOR-US: WeaselCMS
 CVE-2018-14958 (An issue was discovered in WeaselCMS v0.3.5. CSRF can update the ...)
@@ -36308,7 +36308,7 @@ CVE-2018-1553 (IBM WebSphere Application Server Liberty prior to 18.0.0.2 could 
 CVE-2018-1552
 	RESERVED
 CVE-2018-1551 (IBM WebSphere MQ 8.0.0.2 through 8.0.0.8 and 9.0.0.0 through 9.0.0.3 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1550
 	RESERVED
 CVE-2018-1549 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
@@ -36354,7 +36354,7 @@ CVE-2018-1530
 CVE-2018-1529 (IBM Rational DOORS Next Generation 5.0 through 5.0.2, 6.0 through ...)
 	NOT-FOR-US: IBM Rational DOORS Next Generation
 CVE-2018-1528 (IBM Maximo Asset Management 7.6 through 7.6.3 could allow an ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1527
 	RESERVED
 CVE-2018-1526
@@ -36566,7 +36566,7 @@ CVE-2018-1424
 CVE-2018-1423 (IBM Jazz Foundation products could disclose sensitive information to ...)
 	NOT-FOR-US: IBM
 CVE-2018-1422 (IBM Jazz Foundation products (IBM Rational DOORS Next Generation 5.0 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1421 (IBM WebSphere DataPower Appliances 7.1, 7.2, 7.5, 7.5.1, 7.5.2, and ...)
 	NOT-FOR-US: IBM WebSphere DataPower Appliances
 CVE-2018-1420
@@ -88048,7 +88048,7 @@ CVE-2017-1757 (IBM Security Guardium 10.0 is vulnerable to SQL injection. A remo
 CVE-2017-1756 (IBM Business Process Manager 8.6 allows web pages to be stored locally ...)
 	NOT-FOR-US: IBM
 CVE-2017-1755 (IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1754
 	RESERVED
 CVE-2017-1753
@@ -88734,13 +88734,13 @@ CVE-2017-1414
 CVE-2017-1413
 	RESERVED
 CVE-2017-1412 (IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1411 (IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1410
 	RESERVED
 CVE-2017-1409 (IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1408
 	RESERVED
 CVE-2017-1407 (IBM Security Identity Manager Virtual Appliance 6.0 and 7.0 could ...)
@@ -88766,7 +88766,7 @@ CVE-2017-1398 (IBM WebSphere Commerce Enterprise, Professional, Express, and ...
 CVE-2017-1397
 	RESERVED
 CVE-2017-1396 (IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1395 (IBM Security Identity Governance and Intelligence Virtual Appliance ...)
 	NOT-FOR-US: IBM
 CVE-2017-1394
@@ -88822,11 +88822,11 @@ CVE-2017-1370 (IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could disclose sensi
 CVE-2017-1369 (IBM RELM 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This ...)
 	NOT-FOR-US: IBM
 CVE-2017-1368 (IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1367 (IBM Security Identity Governance and Intelligence Virtual Appliance ...)
 	NOT-FOR-US: IBM
 CVE-2017-1366 (IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1365 (IBM Team Concert (RTC including IBM Rational Collaborative Lifecycle ...)
 	NOT-FOR-US: IBM Team Concert
 CVE-2017-1364 (IBM RELM 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/682ca3f36a0ca51f7bf44e3184ecb61978ecee04

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/682ca3f36a0ca51f7bf44e3184ecb61978ecee04
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180806/b0b0f2df/attachment.html>

More information about the debian-security-tracker-commits mailing list