[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Feb 28 10:03:32 UTC 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c7480ab0 by Salvatore Bonaccorso at 2018-02-28T11:03:12+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -212,7 +212,7 @@ CVE-2018-7484 (An issue was discovered in PureVPN through 5.19.4.0 on Windows. T
 CVE-2018-7483
 	RESERVED
 CVE-2018-7482 (The K2 component 2.8.0 for Joomla! has Incorrect Access Control with ...)
-	TODO: check
+	NOT-FOR-US: K2 component for Joomla!
 CVE-2017-18200 (The f2fs implementation in the Linux kernel before 4.14 mishandles ...)
 	- linux <not-affected> (Vulnerable code not present)
 CVE-2018-1000099 [AST-2018-003: Crash with an invalid SDP fmtp attribute]
@@ -238,7 +238,7 @@ CVE-2018-7479 (YzmCMS 3.6 allows remote attackers to discover the full path via 
 CVE-2018-7478
 	RESERVED
 CVE-2018-7477 (SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall School Management Script
 CVE-2018-7476 (controllers/admin/Linkage.php in dayrui FineCms 5.3.0 has Cross Site ...)
 	NOT-FOR-US: FineCms
 CVE-2018-7475
@@ -263,7 +263,7 @@ CVE-2018-7469
 CVE-2018-7468
 	RESERVED
 CVE-2018-7467 (AxxonSoft Axxon Next has Directory Traversal via an initial /css//..%2f ...)
-	TODO: check
+	NOT-FOR-US: AxxonSoft Axxon Next
 CVE-2018-7466 (install/installNewDB.php in TestLink through 1.9.16 allows remote ...)
 	NOT-FOR-US: TestLink
 CVE-2018-7465
@@ -1257,7 +1257,7 @@ CVE-2018-1000068 (An improper input validation vulnerability exists in Jenkins v
 CVE-2018-1000067 (An improper authorization vulnerability exists in Jenkins versions ...)
 	- jenkins <removed>
 CVE-2018-7172 (In index.php in WonderCMS 2.4.0, remote attackers can delete arbitrary ...)
-	TODO: check
+	NOT-FOR-US: WonderCMS
 CVE-2018-7171
 	RESERVED
 CVE-2018-7170 [Multiple authenticated ephemeral associations]



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c7480ab0b93da80c6ad59283d020272952780e56

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c7480ab0b93da80c6ad59283d020272952780e56
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180228/9ffcd803/attachment.html>

More information about the Secure-testing-commits mailing list