[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Aug 28 21:31:40 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
32f2e53c by Salvatore Bonaccorso at 2018-08-28T20:31:18Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -311,7 +311,7 @@ CVE-2018-15903
 CVE-2018-15902
 	RESERVED
 CVE-2018-15901 (e107 2.1.8 has CSRF in 'usersettings.php' with an impact of changing ...)
-	TODO: check
+	NOT-FOR-US: e107
 CVE-2018-15900
 	RESERVED
 CVE-2018-15899 (An issue was discovered in MiniCMS 1.10. There is a post.php?date= XSS ...)
@@ -356,7 +356,7 @@ CVE-2018-15886
 CVE-2018-15885 (Ovation FindMe 1.4-1083-1 is intended to support transmission of ...)
 	NOT-FOR-US: Ovation FindMe
 CVE-2018-15884 (RICOH MP C4504ex devices allow HTML Injection via the ...)
-	TODO: check
+	NOT-FOR-US: RICOH MP C4504ex devices
 CVE-2018-15883
 	RESERVED
 CVE-2018-15882
@@ -497,7 +497,7 @@ CVE-2018-15841
 CVE-2018-15840
 	RESERVED
 CVE-2018-15839 (D-Link DIR-615 devices have a buffer overflow via a long Authorization ...)
-	TODO: check
+	NOT-FOR-US: D-Link DIR-615 devices
 CVE-2018-15838
 	RESERVED
 CVE-2018-15837
@@ -702,7 +702,7 @@ CVE-2018-15742
 CVE-2018-15741
 	RESERVED
 CVE-2018-15740 (Zoho ManageEngine ADManager Plus 6.5.7 has XSS on the "Workflow ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine ADManager Plus
 CVE-2018-15739
 	RESERVED
 CVE-2018-15738
@@ -980,7 +980,7 @@ CVE-2018-15610
 CVE-2018-15609
 	RESERVED
 CVE-2018-15608 (Zoho ManageEngine ADManager Plus 6.5.7 allows HTML Injection on the ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine ADManager Plus
 CVE-2018-15607 (In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x36 ...)
 	- imagemagick <unfixed> (low)
 	[stretch] - imagemagick <ignored> (Minor issue)
@@ -1179,7 +1179,7 @@ CVE-2018-15572 (The spectre_v2_select_mitigation function in arch/x86/kernel/cpu
 	- linux 4.17.15-1
 	NOTE: https://git.kernel.org/linus/fdf82a7856b32d905c39afc85e34364491e46346
 CVE-2018-15571 (The Export Users to CSV plugin through 1.1.1 for WordPress allows CSV ...)
-	TODO: check
+	NOT-FOR-US: Export Users to CSV plugin for WordPress
 CVE-2018-15570 (In waimai Super Cms 20150505, there is stored XSS via the ...)
 	NOT-FOR-US: waimai Super Cms
 CVE-2018-15569 (my little forum 2.4.12 allows CSRF for deletion of users. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/32f2e53ce3a59d6f7a1f05ec01f8b872cacf7691

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/32f2e53ce3a59d6f7a1f05ec01f8b872cacf7691
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180828/0945cdef/attachment.html>

More information about the debian-security-tracker-commits mailing list