[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
carnil at debian.org
Tue Feb 6 21:53:52 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
31a0bc11 by Salvatore Bonaccorso at 2018-02-06T22:53:28+01:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -914,7 +914,7 @@ CVE-2018-6469 (A cross-site scripting (XSS) vulnerability in flickrRSS.php in th
CVE-2018-6468 (A cross-site scripting (XSS) vulnerability in flickrRSS.php in the ...)
NOT-FOR-US: flickrRSS plugin for WordPress
CVE-2018-6467 (The flickrRSS plugin 5.3.1 for WordPress has CSRF via ...)
- TODO: check
+ NOT-FOR-US: flickrRSS plugin for WordPress
CVE-2018-6466 (A cross-site scripting (XSS) vulnerability in flickrRSS.php in the ...)
NOT-FOR-US: flickrRSS plugin for WordPress
CVE-2018-6465 (The PropertyHive plugin before 1.4.15 for WordPress has XSS via the ...)
@@ -1395,13 +1395,13 @@ CVE-2018-6293
CVE-2018-6292
RESERVED
CVE-2018-6291 (WebConsole Cross-Site Scripting in Kaspersky Secure Mail Gateway ...)
- TODO: check
+ NOT-FOR-US: Kaspersky Secure Mail Gateway
CVE-2018-6290 (Local Privilege Escalation in Kaspersky Secure Mail Gateway version ...)
- TODO: check
+ NOT-FOR-US: Kaspersky Secure Mail Gateway
CVE-2018-6289 (Configuration file injection leading to Code Execution as Root in ...)
- TODO: check
+ NOT-FOR-US: Kaspersky Secure Mail Gateway
CVE-2018-6288 (Cross-site Request Forgery leading to Administrative account takeover ...)
- TODO: check
+ NOT-FOR-US: Kaspersky Secure Mail Gateway
CVE-2018-6287
RESERVED
CVE-2018-6286
@@ -3494,7 +3494,7 @@ CVE-2018-5459
CVE-2018-5458
RESERVED
CVE-2018-5457 (A uncontrolled search path element issue was discovered in Vyaire ...)
- TODO: check
+ NOT-FOR-US: Vyaire Medical CareFusion Upgrade Utility
CVE-2018-5456
RESERVED
CVE-2018-5455
@@ -3524,7 +3524,7 @@ CVE-2018-5444
CVE-2018-5443 (A SQL Injection issue was discovered in Advantech WebAccess/SCADA ...)
NOT-FOR-US: Advantech WebAccess/SCADA
CVE-2018-5442 (A Stack-based Buffer Overflow issue was discovered in Fuji Electric ...)
- TODO: check
+ NOT-FOR-US: Fuji Electric V-Server VPR
CVE-2018-5441 (An Improper Validation of Integrity Check Value issue was discovered in ...)
NOT-FOR-US: PHOENIX CONTACT mGuard firmware
CVE-2018-5440
@@ -4988,7 +4988,7 @@ CVE-2018-4879
CVE-2018-4878 (A use-after-free vulnerability was discovered in Adobe Flash Player ...)
NOT-FOR-US: Adobe Flash Player
CVE-2018-4877 (A use-after-free vulnerability was discovered in Adobe Flash Player ...)
- TODO: check
+ NOT-FOR-US: Adobe Flash Player
CVE-2018-4876
RESERVED
CVE-2018-4875
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/31a0bc11d367bdf34045d99c8952c7bde6d739be
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/31a0bc11d367bdf34045d99c8952c7bde6d739be
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180206/390e3109/attachment.html>
More information about the Secure-testing-commits
mailing list