[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Thu Jan 18 18:16:39 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3b1228af by Salvatore Bonaccorso at 2018-01-18T19:16:13+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7506,7 +7506,7 @@ CVE-2018-2733 (Vulnerability in the Oracle Hyperion Planning component of Oracle
CVE-2018-2732 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
NOT-FOR-US: Oracle
CVE-2018-2731 (Vulnerability in the PeopleSoft Enterprise SCM eProcurement component ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2730 (Vulnerability in the Oracle Retail Merchandising System component of ...)
NOT-FOR-US: Oracle
CVE-2018-2729 (Vulnerability in the Oracle Financial Services Funds Transfer Pricing ...)
@@ -7548,43 +7548,43 @@ CVE-2018-2712 (Vulnerability in the Oracle Financial Services Loan Loss Forecast
CVE-2018-2711 (Vulnerability in the Oracle JDeveloper component of Oracle Fusion ...)
NOT-FOR-US: Oracle
CVE-2018-2710 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2709 (Vulnerability in the Oracle Banking Corporate Lending component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2708 (Vulnerability in the Oracle Banking Payments component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2707 (Vulnerability in the Oracle Banking Corporate Lending component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2706 (Vulnerability in the Oracle Banking Corporate Lending component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2705 (Vulnerability in the Oracle Banking Payments component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2704 (Vulnerability in the Oracle Banking Payments component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2703 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2702 (Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2701 (Vulnerability in the Oracle Hospitality Cruise Fleet Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2700 (Vulnerability in the Oracle Hospitality Cruise Fleet Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2699 (Vulnerability in the Application Express component of Oracle Database ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2698 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...)
- virtualbox 5.2.6-dfsg-1
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
[wheezy] - virtualbox <end-of-life> (DSA 3454)
CVE-2018-2697 (Vulnerability in the Oracle Hospitality Cruise Fleet Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2696 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2695 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2694 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...)
- virtualbox 5.2.6-dfsg-1
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
@@ -7594,9 +7594,9 @@ CVE-2018-2693 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...
[jessie] - virtualbox-guest-additions-iso <no-dsa> (Non-free not supported)
NOTE: http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
CVE-2018-2692 (Vulnerability in the Oracle Financial Services Asset Liability ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2691 (Vulnerability in the Oracle User Management component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2690 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...)
- virtualbox 5.2.6-dfsg-1
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
@@ -7622,15 +7622,15 @@ CVE-2018-2685 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
[wheezy] - virtualbox <end-of-life> (DSA 3454)
CVE-2018-2684 (Vulnerability in the Oracle User Management component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2683 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2682 (Vulnerability in the Oracle Financial Services Liquidity Risk ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2681 (Vulnerability in the PeopleSoft Enterprise HCM Human Resources ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2680 (Vulnerability in the Java VM component of Oracle Database Server. ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2679 (Vulnerability in the Oracle Financial Services Profitability ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7656,17 +7656,17 @@ CVE-2018-2676 (Vulnerability in the Oracle VM VirtualBox component of Oracle ...
CVE-2018-2675 (Vulnerability in the Java Advanced Management Console component of ...)
NOT-FOR-US: Java Advanced Management Console
CVE-2018-2674 (Vulnerability in the Oracle FLEXCUBE Direct Banking component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2673 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2672 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2671 (Vulnerability in the PeopleSoft Enterprise SCM Purchasing component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2670 (Vulnerability in the Oracle Financial Services Profitability ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2669 (Vulnerability in the Oracle Hospitality Reporting and Analytics ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2668 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <removed>
@@ -7676,13 +7676,13 @@ CVE-2018-2667 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2666 (Vulnerability in the Oracle Hospitality Labor Management component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2665 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <removed>
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2664 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2663 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7690,15 +7690,15 @@ CVE-2018-2663 (Vulnerability in the Java SE, Java SE Embedded, JRockit component
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2018-2662 (Vulnerability in the Oracle Transportation Management component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2661 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2660 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2659 (Vulnerability in the JD Edwards EnterpriseOne Tools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2658 (Vulnerability in the JD Edwards EnterpriseOne Tools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2657 (Vulnerability in the Java SE, JRockit component of Oracle Java SE ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7706,23 +7706,23 @@ CVE-2018-2657 (Vulnerability in the Java SE, JRockit component of Oracle Java SE
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2018-2656 (Vulnerability in the Oracle General Ledger component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2655 (Vulnerability in the Oracle Work in Process component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2654 (Vulnerability in the PeopleSoft Enterprise HCM Human Resources ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2653 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2652 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2651 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2650 (Vulnerability in the Oracle Hospitality Reporting and Analytics ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2649 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2648 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2647 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
@@ -7736,11 +7736,11 @@ CVE-2018-2645 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2644 (Vulnerability in the Oracle Argus Safety component of Oracle Health ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2643 (Vulnerability in the Oracle Argus Safety component of Oracle Health ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2642 (Vulnerability in the Oracle Argus Safety component of Oracle Health ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2641 (Vulnerability in the Java SE, Java SE Embedded component of Oracle ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7764,9 +7764,9 @@ CVE-2018-2637 (Vulnerability in the Java SE, Java SE Embedded, JRockit component
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2018-2636 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2635 (Vulnerability in the Oracle Application Object Library component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2634 (Vulnerability in the Java SE, Java SE Embedded component of Oracle ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7780,11 +7780,11 @@ CVE-2018-2633 (Vulnerability in the Java SE, Java SE Embedded, JRockit component
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2018-2632 (Vulnerability in the Siebel Engineering - Installer and Deployment ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2631 (Vulnerability in the Oracle Transportation Management component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2630 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2629 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7797,23 +7797,23 @@ CVE-2018-2627 (Vulnerability in the Java SE component of Oracle Java SE ...)
- openjdk-9 <not-affected> (Specific to installer for Windows)
- openjdk-8 <not-affected> (Specific to installer for Windows)
CVE-2018-2626 (Vulnerability in the Oracle Financial Services Balance Sheet Planning ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2625 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2624 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2623 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2622 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <removed>
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2621 (Vulnerability in the Oracle Hospitality Cruise Shipboard Property ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2620 (Vulnerability in the Primavera Unifier component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2619 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2618 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7821,35 +7821,35 @@ CVE-2018-2618 (Vulnerability in the Java SE, Java SE Embedded, JRockit component
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2018-2617 (Vulnerability in the OSS Support Tools component of Oracle Support ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2616 (Vulnerability in the OSS Support Tools component of Oracle Support ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2615 (Vulnerability in the OSS Support Tools component of Oracle Support ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2614 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2613 (Vulnerability in the Oracle Argus Safety component of Oracle Health ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2612 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2611 (Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2610 (Vulnerability in the Hyperion Data Relationship Management component ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2609 (Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2608 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2607 (Vulnerability in the Oracle Hospitality Guest Access component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2606 (Vulnerability in the Oracle Hospitality Guest Access component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2605 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2604 (Vulnerability in the Oracle Hospitality Guest Access component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2603 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7863,7 +7863,7 @@ CVE-2018-2602 (Vulnerability in the Java SE, Java SE Embedded component of Oracl
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2018-2601 (Vulnerability in the Oracle Internet Directory component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2600 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
@@ -7877,17 +7877,17 @@ CVE-2018-2599 (Vulnerability in the Java SE, Java SE Embedded, JRockit component
CVE-2018-2598
RESERVED
CVE-2018-2597 (Vulnerability in the Oracle Hospitality Cruise Dining Room Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2596 (Vulnerability in the Oracle WebCenter Content component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2595 (Vulnerability in the Hyperion BI+ component of Oracle Hyperion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2594 (Vulnerability in the Hyperion BI+ component of Oracle Hyperion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2593 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2592 (Vulnerability in the Oracle Financial Services Balance Sheet Planning ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2591 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 5.7.20-1
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
@@ -7897,7 +7897,7 @@ CVE-2018-2590 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2589 (Vulnerability in the Oracle Hospitality Simphony component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2588 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7914,7 +7914,7 @@ CVE-2018-2585 (Vulnerability in the MySQL Connectors component of Oracle MySQL .
- mysql-connector-net <unfixed>
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2584 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2583 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
@@ -7925,7 +7925,7 @@ CVE-2018-2582 (Vulnerability in the Java SE, Java SE Embedded component of Oracl
CVE-2018-2581 (Vulnerability in the Java SE component of Oracle Java SE ...)
- openjfx <unfixed>
CVE-2018-2580 (Vulnerability in the Oracle Applications DBA component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2579 (Vulnerability in the Java SE, Java SE Embedded, JRockit component of ...)
- openjdk-9 <unfixed>
- openjdk-8 <unfixed>
@@ -7933,17 +7933,17 @@ CVE-2018-2579 (Vulnerability in the Java SE, Java SE Embedded, JRockit component
- openjdk-6 <removed>
[wheezy] - openjdk-6 <end-of-life>
CVE-2018-2578 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2577 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2576 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2575 (Vulnerability in the Core RDBMS component of Oracle Database Server. ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2574 (Vulnerability in the Siebel CRM Desktop component of Oracle Siebel CRM ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2573 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
@@ -7951,23 +7951,23 @@ CVE-2018-2573 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
CVE-2018-2572
RESERVED
CVE-2018-2571 (Vulnerability in the Oracle Communications Unified Inventory ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2570 (Vulnerability in the Oracle Communications Unified Inventory ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2569 (Vulnerability in the Java ME SDK component of Oracle Java Micro ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2568 (Vulnerability in the Integrated Lights Out Manager (ILOM) component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2567 (Vulnerability in the Oracle Communications Order and Service ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2566 (Vulnerability in the Integrated Lights Out Manager (ILOM) component of ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2565 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <unfixed> (bug #887477)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2564 (Vulnerability in the Oracle WebCenter Content component of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2563
RESERVED
CVE-2018-2562 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
@@ -7975,9 +7975,9 @@ CVE-2018-2562 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.5 <removed>
NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html#AppendixMSQL
CVE-2018-2561 (Vulnerability in the Oracle HTTP Server component of Oracle Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2560 (Vulnerability in the Solaris component of Oracle Sun Systems Products ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2018-2559
RESERVED
CVE-2018-2558
@@ -14738,7 +14738,7 @@ CVE-2018-0117
CVE-2018-0116
RESERVED
CVE-2018-0115 (A vulnerability in the CLI of the Cisco StarOS operating system for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0114 (A vulnerability in the Cisco node-jose open source library before ...)
NOT-FOR-US: Cisco node-jose
CVE-2018-0113
@@ -14746,57 +14746,57 @@ CVE-2018-0113
CVE-2018-0112
RESERVED
CVE-2018-0111 (A vulnerability in Cisco WebEx Meetings Server could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0110 (A vulnerability in Cisco WebEx Meetings Server could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0109 (A vulnerability in Cisco WebEx Meetings Server could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0108 (A vulnerability in Cisco WebEx Meetings Server could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0107 (A vulnerability in the web framework of Cisco Prime Service Catalog ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0106 (A vulnerability in the ConfD server of the Cisco Elastic Services ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0105 (A vulnerability in the web framework of Cisco Unified Communications ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0104 (A vulnerability in Cisco WebEx Network Recording Player for Advanced ...)
NOT-FOR-US: Cisco
CVE-2018-0103 (A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player ...)
NOT-FOR-US: Cisco
CVE-2018-0102 (A vulnerability in the Pong tool of Cisco NX-OS Software could allow an ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0101
RESERVED
CVE-2018-0100 (A vulnerability in the Profile Editor of the Cisco AnyConnect Secure ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0099 (A vulnerability in the web management GUI of the Cisco D9800 Network ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0098 (A vulnerability in the web-based management interface of Cisco WAP150 ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0097 (A vulnerability in the web interface of Cisco Prime Infrastructure ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0096 (A vulnerability in the role-based access control (RBAC) functionality ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0095 (A vulnerability in the administrative shell of Cisco AsyncOS on Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0094 (A vulnerability in IPv6 ingress packet processing for Cisco UCS Central ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0093 (A vulnerability in the web-based management interface of Cisco Web ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0092 (A vulnerability in the network-operator user role implementation for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0091 (A vulnerability in the web-based management interface of Cisco Identity ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0090 (A vulnerability in management interface access control list (ACL) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0089 (A vulnerability in the Policy and Charging Rules Function (PCRF) of the ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0088 (A vulnerability in one of the diagnostic test CLI commands on Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2018-0087
RESERVED
CVE-2018-0086 (A vulnerability in the application server of the Cisco Unified Customer ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2017-16994 (The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel ...)
- linux 4.14.2-1
[stretch] - linux 4.9.65-1
@@ -15610,7 +15610,7 @@ CVE-2018-0001 (A remote, unauthenticated attacker may be able to execute code by
CVE-2017-16866 (dayrui FineCms 5.2.0 before 2017.11.16 has Cross Site Scripting (XSS) ...)
NOT-FOR-US: dayrui FineCms
CVE-2017-16865 (The Trello importer in Atlassian Jira before version 7.6.1 allows ...)
- TODO: check
+ NOT-FOR-US: Atlassian Jira
CVE-2017-16864 (The issue search resource in Atlassian Jira before version 7.4.2 ...)
NOT-FOR-US: Atlassian Jira
CVE-2017-16863
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3b1228af18555e578d6c9915392a1ee0f7d323e0
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3b1228af18555e578d6c9915392a1ee0f7d323e0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180118/ec30ee6e/attachment-0001.html>
More information about the Secure-testing-commits
mailing list