[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Thu Aug 30 11:29:11 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7e38b81b by Moritz Muehlenhoff at 2018-08-30T10:28:36Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2018-16158 (Eaton Power Xpert Meter 4000, 6000, and 8000 devices before 13.4.0.10 ...)
-	TODO: check
+	NOT-FOR-US: Eaton Power Xpert Meter
 CVE-2018-16157
 	RESERVED
 CVE-2018-16156
@@ -31,9 +31,9 @@ CVE-2018-16144
 CVE-2018-16143
 	RESERVED
 CVE-2018-16142 (PHPOK 4.8.278 has a Reflected XSS vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: PHPOK
 CVE-2018-16141 (ThinkCMF X2.2.3 has an arbitrary file deletion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: ThinkCMF
 CVE-2018-16140 (A buffer underwrite vulnerability in get_line() (read.c) in fig2dev ...)
 	TODO: check
 CVE-2018-16139
@@ -47,11 +47,11 @@ CVE-2018-16136
 CVE-2018-16135
 	RESERVED
 CVE-2018-16134 (Cybrotech CyBroHttpServer 1.0.3 allows XSS via a URI. ...)
-	TODO: check
+	NOT-FOR-US: Cybrotech
 CVE-2018-16133 (Cybrotech CyBroHttpServer 1.0.3 allows Directory Traversal via a ../ in ...)
-	TODO: check
+	NOT-FOR-US: Cybrotech
 CVE-2018-16132 (The image rendering component (createGenericPreview) of the Open ...)
-	TODO: check
+	- signal-desktop <itp> (bug #842943)
 CVE-2018-16131
 	RESERVED
 CVE-2018-16130
@@ -87,7 +87,7 @@ CVE-2018-16117
 CVE-2018-16116
 	RESERVED
 CVE-2018-16115 (Lightbend Akka 2.5.x before 2.5.16 allows message disclosure and ...)
-	TODO: check
+	NOT-FOR-US: Lightbend Akka
 CVE-2018-16114
 	RESERVED
 CVE-2018-16113
@@ -7846,7 +7846,7 @@ CVE-2018-12831
 CVE-2018-12830
 	RESERVED
 CVE-2018-12829 (Adobe Creative Cloud Desktop Application before 4.6.1 has an improper ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-12828 (Adobe Flash Player 30.0.0.134 and earlier have a "use of a component ...)
 	NOT-FOR-US: Adobe
 CVE-2018-12827 (Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read ...)
@@ -9595,7 +9595,7 @@ CVE-2018-12242
 CVE-2018-12241
 	RESERVED
 CVE-2018-12240 (The Norton Identity Safe product prior to 5.3.0.976 may be susceptible ...)
-	TODO: check
+	NOT-FOR-US: Norton
 CVE-2018-12239
 	RESERVED
 CVE-2018-12238
@@ -20961,19 +20961,19 @@ CVE-2018-7797
 CVE-2018-7796
 	RESERVED
 CVE-2018-7795 (A Cross Protocol Injection vulnerability exists in Schneider ...)
-	TODO: check
+	NOT-FOR-US: Schneider
 CVE-2018-7794
 	RESERVED
 CVE-2018-7793
 	RESERVED
 CVE-2018-7792 (A Permissions, Privileges, and Access Control vulnerability exists in ...)
-	TODO: check
+	NOT-FOR-US: Schneider
 CVE-2018-7791 (A Permissions, Privileges, and Access Control vulnerability exists in ...)
-	TODO: check
+	NOT-FOR-US: Schneider
 CVE-2018-7790 (An Information Management Error vulnerability exists in Schneider ...)
-	TODO: check
+	NOT-FOR-US: Schneider
 CVE-2018-7789 (An Improper Check for Unusual or Exceptional Conditions vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Schneider
 CVE-2018-7788
 	RESERVED
 CVE-2018-7787 (In Schneider Electric U.motion Builder software versions prior to ...)
@@ -24817,9 +24817,9 @@ CVE-2018-6601
 CVE-2018-6600
 	RESERVED
 CVE-2018-6599 (An issue was discovered on Orbic Wonder ...)
-	TODO: check
+	NOT-FOR-US: Orbic
 CVE-2018-6598 (An issue was discovered on Orbic Wonder ...)
-	TODO: check
+	NOT-FOR-US: Orbic
 CVE-2018-6597 (The Alcatel A30 device with a build fingerprint of ...)
 	NOT-FOR-US: Alcatel A30 device
 CVE-2018-6596 (webhooks/base.py in Anymail (aka django-anymail) before 1.2.1 is prone ...)
@@ -30072,7 +30072,7 @@ CVE-2018-5005
 CVE-2018-5004 (Adobe Experience Manager versions 6.2 and 6.3 have a Server-Side ...)
 	NOT-FOR-US: Adobe
 CVE-2018-5003 (Adobe Creative Cloud Desktop Application before 4.5.5.342 (installer) ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-5002 (Adobe Flash Player versions 29.0.0.171 and earlier have a Stack-based ...)
 	NOT-FOR-US: Adobe
 CVE-2018-5001 (Adobe Flash Player versions 29.0.0.171 and earlier have an ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7e38b81b34f8cc6df29fabe13c2d124cb85cbc36

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7e38b81b34f8cc6df29fabe13c2d124cb85cbc36
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180830/695e4098/attachment.html>

More information about the debian-security-tracker-commits mailing list