[Git][security-tracker-team/security-tracker][master] Process several NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Jul 3 21:32:17 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aae98e27 by Salvatore Bonaccorso at 2018-07-03T22:31:53+02:00
Process several NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5355,7 +5355,7 @@ CVE-2018-11054
 CVE-2018-11053 (Dell EMC iDRAC Service Module for all supported Linux and XenServer ...)
 	NOT-FOR-US: Dell
 CVE-2018-11052 (Dell EMC ECS versions 3.2.0.0 and 3.2.0.1 contain an authentication ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2018-11051 (RSA Certificate Manager Versions 6.9 build 560 through 6.9 build 564 ...)
 	TODO: check
 CVE-2018-11050
@@ -32476,7 +32476,7 @@ CVE-2018-1251
 CVE-2018-1250
 	RESERVED
 CVE-2018-1249 (Dell EMC iDRAC9 versions prior to 3.21.21.21 did not enforce the use ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2018-1248 (RSA Authentication Manager Security Console, Operation Console and ...)
 	NOT-FOR-US: RSA Authentication Mamager
 CVE-2018-1247 (RSA Authentication Manager Security Console, version 8.3 and earlier, ...)
@@ -32486,9 +32486,9 @@ CVE-2018-1246
 CVE-2018-1245
 	RESERVED
 CVE-2018-1244 (Dell EMC iDRAC7/iDRAC8, versions prior to 2.60.60.60, and iDRAC9 ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2018-1243 (Dell EMC iDRAC6, versions prior to 2.91, iDRAC7/iDRAC8, versions prior ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2018-1242 (Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs ...)
 	NOT-FOR-US: Dell
 CVE-2018-1241 (Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs ...)
@@ -32550,7 +32550,7 @@ CVE-2018-1214 (Dell EMC SupportAssist Enterprise version 1.1 creates a local Win
 CVE-2018-1213 (Dell EMC Isilon OneFS versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - ...)
 	NOT-FOR-US: Dell
 CVE-2018-1212 (The web-based diagnostics console in Dell EMC iDRAC6 (Monolithic ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2018-1211 (Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain a path ...)
 	NOT-FOR-US: Dell EMC iDRAC7/iDRAC8
 CVE-2018-1210
@@ -82833,11 +82833,11 @@ CVE-2017-1719
 CVE-2017-1718
 	RESERVED
 CVE-2017-1717 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1716 (IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could disclose ...)
 	NOT-FOR-US: IBM Tivoli Workload Scheduler
 CVE-2017-1715 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1714 (IBM Notes and Domino NSD 8.5 and 9.0 could allow an authenticated ...)
 	NOT-FOR-US: IBM Notes and Domino NSD
 CVE-2017-1713
@@ -82885,9 +82885,9 @@ CVE-2017-1693 (IBM Integration Bus 9.0 and 10.0 could allow an attacker that has
 CVE-2017-1692 (IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability ...)
 	NOT-FOR-US: IBM AIX
 CVE-2017-1691 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1690 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1689 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2017-1688 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...)
@@ -82963,9 +82963,9 @@ CVE-2017-1654 (IBM Spectrum Scale 4.1.1 and 4.2.0 - 4.2.3 could allow a local ..
 CVE-2017-1653 (IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management ...)
 	NOT-FOR-US: IBM Jazz Foundation
 CVE-2017-1652 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1651 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1650 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2017-1649
@@ -83025,7 +83025,7 @@ CVE-2017-1623 (IBM QRadar 7.2 and 7.3 is vulnerable to cross-site scripting. Thi
 CVE-2017-1622
 	RESERVED
 CVE-2017-1621 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1620
 	RESERVED
 CVE-2017-1619
@@ -83051,7 +83051,7 @@ CVE-2017-1610
 CVE-2017-1609
 	RESERVED
 CVE-2017-1608 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1607 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
 CVE-2017-1606 (IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) ...)
@@ -83083,7 +83083,7 @@ CVE-2017-1594
 CVE-2017-1593 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2017-1592 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1591 (IBM WebSphere DataPower Appliances 7.0.0 through 7.6 is vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2017-1590
@@ -83634,17 +83634,17 @@ CVE-2017-1319 (IBM Tivoli Federated Identity Manager 6.2 is affected by a ...)
 CVE-2017-1318 (IBM MQ Appliance 8.0 and 9.0 could allow an authenticated messaging ...)
 	NOT-FOR-US: IBM
 CVE-2017-1317 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1316 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1315 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1314 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1313 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1312 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1311 (IBM Insights Foundation for Energy 2.0 is vulnerable to SQL injection. ...)
 	NOT-FOR-US: IBM
 CVE-2017-1310 (IBM Informix Dynamic Server 12.1 could allow an authenticated user to ...)
@@ -83656,7 +83656,7 @@ CVE-2017-1308 (IBM Daeja ViewONE Professional, Standard & Virtual 4.1.5.1 an
 CVE-2017-1307
 	RESERVED
 CVE-2017-1306 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1305 (IBM DOORS Next Generation (DNG/RRC) 6.0.2 and 6.0.3 is vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2017-1304 (IBM has identified a vulnerability with IBM Spectrum Scale/GPFS ...)
@@ -83670,7 +83670,7 @@ CVE-2017-1301 (IBM Spectrum Protect 7.1 and 8.1 could allow a local attacker to 
 CVE-2017-1300 (IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2017-1299 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1298
 	REJECTED
 CVE-2017-1297 (IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 ...)
@@ -83680,9 +83680,9 @@ CVE-2017-1296
 CVE-2017-1295 (IBM RSA DM contains unspecified vulnerability in CLM Applications with ...)
 	NOT-FOR-US: IBM
 CVE-2017-1294 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1293 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1292 (IBM Maximo Asset Management 7.5 and 7.6 generates error messages that ...)
 	NOT-FOR-US: IBM
 CVE-2017-1291 (IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to HTTP response ...)
@@ -83768,7 +83768,7 @@ CVE-2017-1252
 CVE-2017-1251 (An undisclosed vulnerability in CLM applications may result in some ...)
 	NOT-FOR-US: IBM
 CVE-2017-1250 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1249 (IBM Rhapsody DM 5.0 and 6.0 is vulnerable to cross-site scripting. ...)
 	NOT-FOR-US: IBM
 CVE-2017-1248



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aae98e279fa82e7579d50afd9753262d0a83e223

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aae98e279fa82e7579d50afd9753262d0a83e223
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180703/81868ccf/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list