[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Sat Feb 3 14:04:43 UTC 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
12ed7ff3 by Salvatore Bonaccorso at 2018-02-03T15:04:01+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -65,7 +65,7 @@ CVE-2018-6578 (SQL Injection exists in the JE PayperVideo 3.0.0 component for Jo
 CVE-2018-6577 (SQL Injection exists in the JEXTN Membership 3.1.0 component for ...)
 	NOT-FOR-US: JEXTN Membership component for Joomla!
 CVE-2018-6576 (SQL Injection exists in Event Manager 1.0 via the event.php id ...)
-	TODO: check
+	NOT-FOR-US: Event Manager
 CVE-2018-6575 (SQL Injection exists in the JEXTN Classified 1.0.0 component for ...)
 	NOT-FOR-US: JEXTN Membership component for Joomla!
 CVE-2018-6574
@@ -143,7 +143,7 @@ CVE-2018-6547
 CVE-2018-6546
 	RESERVED
 CVE-2018-6545 (Ipswitch MoveIt v8.1 is vulnerable to a Stored Cross-Site Scripting ...)
-	TODO: check
+	NOT-FOR-US: Ipswitch MoveIt
 CVE-2018-6544 (pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could ...)
 	- mupdf <unfixed>
 	NOTE: http://git.ghostscript.com/?p=mupdf.git;h=26527eef77b3e51c2258c8e40845bfbc015e405d
@@ -826,9 +826,9 @@ CVE-2018-6321
 CVE-2018-6320
 	RESERVED
 CVE-2018-6319 (In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special ...)
-	TODO: check
+	NOT-FOR-US: Sophos Tester Tool
 CVE-2018-6318 (In Sophos Tester Tool 3.2.0.7 Beta, the driver loads (in the context ...)
-	TODO: check
+	NOT-FOR-US: Sophos Tester Tool
 CVE-2018-6317 (The remote management interface in Claymore Dual Miner 10.5 and ...)
 	TODO: check
 CVE-2018-6316
@@ -15039,7 +15039,7 @@ CVE-2017-17110 (Techno Portfolio Management Panel 1.0 allows an attacker to inje
 CVE-2017-17109
 	RESERVED
 CVE-2017-17108 (Path traversal vulnerability in the administrative panel in KonaKart ...)
-	TODO: check
+	NOT-FOR-US: KonaKart eCommerce Platform
 CVE-2017-17107 (Zivif PR115-204-P-RS V2.3.4.2103 web cameras contain a hard-coded ...)
 	NOT-FOR-US: Zivif web cameras
 CVE-2017-17106 (Credentials for Zivif PR115-204-P-RS V2.3.4.2103 Webcams can be ...)
@@ -18103,7 +18103,7 @@ CVE-2017-16863 (The PieChart gadget in Atlassian Jira before version 7.5.3 allow
 CVE-2017-16862 (The IncomingMailServers resource in Atlassian Jira before version ...)
 	NOT-FOR-US: Atlassian Jira
 CVE-2017-16861 (It was possible for double OGNL evaluation in certain redirect action ...)
-	TODO: check
+	NOT-FOR-US: Atlassian Fisheye and Crucible
 CVE-2017-16860
 	RESERVED
 CVE-2017-16859



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/12ed7ff3ae5fbc783b9973393d8bfdefe3064294

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/12ed7ff3ae5fbc783b9973393d8bfdefe3064294
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180203/0f2ccbfe/attachment.html>

More information about the Secure-testing-commits mailing list