[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Jan 8 09:22:33 UTC 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e2dae036 by Salvatore Bonaccorso at 2018-01-08T10:22:19+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,5 +1,5 @@
 CVE-2018-5298 (In the Procter & Gamble "Oral-B App" (aka com.pg.oralb.oralbapp) ...)
-	TODO: check
+	NOT-FOR-US: Procter & Gamble "Oral-B App" for Android
 CVE-2018-5297
 	RESERVED
 CVE-2018-5296 (In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the ...)
@@ -10,25 +10,25 @@ CVE-2018-5294 (In libming 0.4.8, there is an integer overflow (caused by an ...)
 	- ming <removed>
 	NOTE: https://github.com/libming/libming/issues/98
 CVE-2018-5293 (The GD Rating System plugin 2.3 for WordPress has XSS via the ...)
-	TODO: check
+	NOT-FOR-US: GD Rating System plugin for WordPress
 CVE-2018-5292 (The GD Rating System plugin 2.3 for WordPress has XSS via the ...)
-	TODO: check
+	NOT-FOR-US: GD Rating System plugin for WordPress
 CVE-2018-5291 (The GD Rating System plugin 2.3 for WordPress has Directory Traversal ...)
-	TODO: check
+	NOT-FOR-US: GD Rating System plugin for WordPress
 CVE-2018-5290 (The GD Rating System plugin 2.3 for WordPress has Directory Traversal ...)
-	TODO: check
+	NOT-FOR-US: GD Rating System plugin for WordPress
 CVE-2018-5289 (The GD Rating System plugin 2.3 for WordPress has Directory Traversal ...)
-	TODO: check
+	NOT-FOR-US: GD Rating System plugin for WordPress
 CVE-2018-5288 (The GD Rating System plugin 2.3 for WordPress has XSS via the ...)
-	TODO: check
+	NOT-FOR-US: GD Rating System plugin for WordPress
 CVE-2018-5287 (The GD Rating System plugin 2.3 for WordPress has Directory Traversal ...)
-	TODO: check
+	NOT-FOR-US: GD Rating System plugin for WordPress
 CVE-2018-5286 (The GD Rating System plugin 2.3 for WordPress has XSS via the ...)
-	TODO: check
+	NOT-FOR-US: GD Rating System plugin for WordPress
 CVE-2018-5285 (The ImageInject plugin 1.15 for WordPress has CSRF via ...)
-	TODO: check
+	NOT-FOR-US: ImageInject plugin for WordPress
 CVE-2018-5284 (The ImageInject plugin 1.15 for WordPress has XSS via the flickr_appid ...)
-	TODO: check
+	NOT-FOR-US: ImageInject plugin for WordPress
 CVE-2018-5283
 	RESERVED
 CVE-2018-5282
@@ -38,33 +38,33 @@ CVE-2018-5281
 CVE-2018-5280
 	RESERVED
 CVE-2018-5279 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5278 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5277 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5276 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5275 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5274 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5273 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5272 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5271 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5270 (In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows ...)
-	TODO: check
+	NOT-FOR-US: Malwarebytes Premium
 CVE-2018-5269 (In OpenCV 3.3.1, an assertion failure happens in ...)
 	TODO: check
 CVE-2018-5268 (In OpenCV 3.3.1, a heap-based buffer overflow happens in ...)
 	TODO: check
 CVE-2018-5267 (Cobham Sea Tel 121 build 222701 devices allow remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Cobham Sea Tel 121 build 222701 devices
 CVE-2018-5266 (Cobham Sea Tel 121 build 222701 devices allow remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Cobham Sea Tel 121 build 222701 devices
 CVE-2018-5265
 	RESERVED
 CVE-2018-5264
@@ -497,7 +497,7 @@ CVE-2018-5073 (Online Ticket Booking has CSRF via admin/movieedit.php. ...)
 CVE-2018-5072 (Online Ticket Booking has XSS via the admin/sitesettings.php keyword ...)
 	NOT-FOR-US: Online Ticket Booking
 CVE-2018-5071 (Persistent XSS exists in the web server on Cobham Sea Tel 116 build ...)
-	TODO: check
+	NOT-FOR-US: Cobham Sea Tel 116 build 222429 satellite communication system devices
 CVE-2018-5070
 	RESERVED
 CVE-2018-5069



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e2dae0368e27c5380ba862e554a5a4887e648a57

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e2dae0368e27c5380ba862e554a5a4887e648a57
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180108/798cebb4/attachment.html>

More information about the Secure-testing-commits mailing list