[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Aug 24 09:22:42 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
07c58323 by Salvatore Bonaccorso at 2018-08-24T08:22:18Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -111,11 +111,11 @@ CVE-2018-15811
 CVE-2018-15810
 	RESERVED
 CVE-2018-15809 (AccuPOS 2017.8 is installed with the insecure "Authenticated Users: ...)
-	TODO: check
+	NOT-FOR-US: AccuPOS
 CVE-2018-15808 (POSIM EVO 15.13 for Windows includes hardcoded database credentials for ...)
-	TODO: check
+	NOT-FOR-US: POSIM EVO for Windows
 CVE-2018-15807 (POSIM EVO 15.13 for Windows includes an "Emergency Override" ...)
-	TODO: check
+	NOT-FOR-US: POSIM EVO for Windows
 CVE-2018-15806
 	RESERVED
 CVE-2018-15805
@@ -31725,15 +31725,15 @@ CVE-2018-3913
 CVE-2018-3912 (On Samsung SmartThings Hub STH-ETH-250 devices with firmware version ...)
 	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
 CVE-2018-3911 (An exploitable HTTP header injection vulnerability exists in the ...)
-	TODO: check
+	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
 CVE-2018-3910
 	RESERVED
 CVE-2018-3909 (An exploitable vulnerability exists in the REST parser of video-core's ...)
-	TODO: check
+	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
 CVE-2018-3908
 	RESERVED
 CVE-2018-3907 (An exploitable vulnerability exists in the REST parser of video-core's ...)
-	TODO: check
+	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
 CVE-2018-3906
 	RESERVED
 CVE-2018-3905 (An exploitable buffer overflow vulnerability exists in the camera ...)
@@ -31787,7 +31787,7 @@ CVE-2018-3882
 CVE-2018-3881 (An exploitable unauthenticated XML external injection vulnerability ...)
 	NOT-FOR-US: FocalScope
 CVE-2018-3880 (An exploitable stack-based buffer overflow vulnerability exists in the ...)
-	TODO: check
+	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
 CVE-2018-3879 (An exploitable JSON injection vulnerability exists in the credentials ...)
 	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
 CVE-2018-3878 (Multiple exploitable buffer overflow vulnerabilities exist in the ...)
@@ -31803,7 +31803,7 @@ CVE-2018-3874
 CVE-2018-3873
 	RESERVED
 CVE-2018-3872 (An exploitable buffer overflow vulnerability exists in the credentials ...)
-	TODO: check
+	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
 CVE-2018-3871 (An exploitable out-of-bounds write exists in the PCX parsing ...)
 	NOT-FOR-US: Canvas Draw
 CVE-2018-3870 (An exploitable out-of-bounds write exists in the PCX parsing ...)
@@ -31815,7 +31815,7 @@ CVE-2018-3868 (A specially crafted TIFF image processed via the application can 
 CVE-2018-3867 (An exploitable stack-based buffer overflow vulnerability exists in the ...)
 	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250 devices
 CVE-2018-3866 (An exploitable buffer overflow vulnerability exists in the ...)
-	TODO: check
+	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
 CVE-2018-3865
 	RESERVED
 CVE-2018-3864
@@ -31835,7 +31835,7 @@ CVE-2018-3858 (An exploitable heap overflow exists in the TIFF parsing functiona
 CVE-2018-3857 (An exploitable heap overflow exists in the TIFF parsing functionality ...)
 	NOT-FOR-US: Canvas Draw
 CVE-2018-3856 (An exploitable vulnerability exists in the smart cameras RTSP ...)
-	TODO: check
+	NOT-FOR-US: Samsung SmartThings Hub STH-ETH-250
 CVE-2018-3855 (In Hyland Perceptive Document Filters 11.4.0.2647 - x86/x64 ...)
 	NOT-FOR-US: Hyland Perceptive Document Filters
 CVE-2018-3854



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/07c58323a4c36ad6499a66c57c62a87a975227f1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/07c58323a4c36ad6499a66c57c62a87a975227f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180824/7de6c8af/attachment.html>

More information about the debian-security-tracker-commits mailing list