[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Sat Dec 1 21:12:39 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e1f1c9b3 by Salvatore Bonaccorso at 2018-12-01T21:12:08Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13154,7 +13154,7 @@ CVE-2018-15718
 CVE-2018-15717
 	RESERVED
 CVE-2018-15716 (NUUO NVRMini2 version 3.10.0 and earlier is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: NUUO NVRMini2
 CVE-2018-15715 (Zoom clients on Windows (before version 4.1.34814.1119), Mac OS ...)
 	TODO: check
 CVE-2018-15714 (Nagios XI 5.5.6 allows reflected cross site scripting from remote ...)
@@ -45003,9 +45003,9 @@ CVE-2018-4041
 CVE-2018-4040
 	RESERVED
 CVE-2018-4039 (An exploitable out-of-bounds write vulnerability exists in the PNG ...)
-	TODO: check
+	NOT-FOR-US: Atlantis Word Processor
 CVE-2018-4038 (An exploitable arbitrary write vulnerability exists in the open ...)
-	TODO: check
+	NOT-FOR-US: Atlantis Word Processor
 CVE-2018-4037
 	RESERVED
 CVE-2018-4036
@@ -45193,7 +45193,7 @@ CVE-2018-3953 (Devices in the Linksys ESeries line of routers (Linksys E1200 Fir
 CVE-2018-3952 (An exploitable code execution vulnerability exists in the connect ...)
 	NOT-FOR-US: NordVPN
 CVE-2018-3951 (An exploitable remote code execution vulnerability exists in the HTTP ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2018-3950 (An exploitable remote code execution vulnerability exists in the ping ...)
 	NOT-FOR-US: TP-Link
 CVE-2018-3949 (An exploitable information disclosure vulnerability exists in the HTTP ...)
@@ -55715,7 +55715,7 @@ CVE-2018-0718 (Command injection vulnerability in Music Station 5.1.2 and earlie
 CVE-2018-0717
 	RESERVED
 CVE-2018-0716 (Cross-site scripting vulnerability in QTS 4.2.6 build 20180711, QTS ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2018-0715 (Cross-site scripting vulnerability in QNAP Photo Station versions ...)
 	NOT-FOR-US: QNAP Photo Station
 CVE-2018-0714 (Command injection vulnerability in Helpdesk versions 1.1.21 and ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e1f1c9b373a39af93c1d1e4b1896fa4cd52ba602

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e1f1c9b373a39af93c1d1e4b1896fa4cd52ba602
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181201/efb4077c/attachment.html>

More information about the debian-security-tracker-commits mailing list