[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Mon Jul 9 21:35:12 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
07c53971 by Salvatore Bonaccorso at 2018-07-09T22:34:55+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7,7 +7,7 @@ CVE-2018-13785 (In libpng 1.6.34, a wrong calculation of row_factor in the ...)
NOTE: https://github.com/glennrp/libpng/commit/8a05766cb74af05c04c53e6c9d60c13fc4d59bf2
NOTE: https://sourceforge.net/p/libpng/bugs/278/
CVE-2018-13784 (PrestaShop before 1.6.1.20 and 1.7.x before 1.7.3.4 mishandles cookie ...)
- TODO: check
+ NOT-FOR-US: PrestaShop
CVE-2018-1000612
REJECTED
CVE-2018-13783 (The mintToken function of a smart contract implementation for ...)
@@ -1088,7 +1088,7 @@ CVE-2018-13258
CVE-2018-13257
RESERVED
CVE-2018-13256 (PHP Scripts Mall Auditor Website 2.0.1 has XSS via the lastname or ...)
- TODO: check
+ NOT-FOR-US: PHP Scripts Mall Auditor Website
CVE-2018-13255
RESERVED
CVE-2018-13254
@@ -1701,7 +1701,7 @@ CVE-2018-12979
CVE-2018-12978
RESERVED
CVE-2018-12977 (A SQL injection vulnerability in the SoftExpert (SE) Excellence Suite ...)
- TODO: check
+ NOT-FOR-US: SoftExpert (SE) Excellence Suite
CVE-2018-12976 (In Go Doc Dot Org (gddo) through 2018-06-27, an attacker could use ...)
NOT-FOR-US: Go Doc Dot Org
CVE-2018-12975
@@ -5469,11 +5469,11 @@ CVE-2018-11545 (md4c 0.2.5 has a heap-based buffer overflow in md_merge_lines be
CVE-2018-11544 (The Olive Tree Ftp Server application 1.32 for Android has Insecure ...)
NOT-FOR-US: Olive Tree Ftp Server application
CVE-2018-11543 (A Local File Inclusion (LFI) vulnerability in the Sonus SBC 1000 / SBC ...)
- TODO: check
+ NOT-FOR-US: Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface
CVE-2018-11542 (A Remote Command Execution (RCE) vulnerability in the Sonus SBC 1000 / ...)
- TODO: check
+ NOT-FOR-US: Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface
CVE-2018-11541 (A root privilege escalation vulnerability in the Sonus SBC 1000 / SBC ...)
- TODO: check
+ NOT-FOR-US: Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface
CVE-2018-XXXX [gitlab: Removing public deploy keys regression]
[experimental] - gitlab 10.7.5+dfsg-1
- gitlab <unfixed> (bug #900522)
@@ -17962,19 +17962,19 @@ CVE-2018-6859 (SQL Injection exists in PHP Scripts Mall Schools Alert Management
CVE-2018-6858 (Cross Site Scripting (XSS) exists in PHP Scripts Mall Facebook Clone ...)
NOT-FOR-US: PHP Scripts Mall Facebook Clone Script
CVE-2018-6857 (Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2018-6856 (Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2018-6855 (Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2018-6854 (Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2018-6853 (Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2018-6852 (Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2018-6851 (Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2018-6850
RESERVED
CVE-2018-6849 (In the WebRTC component in DuckDuckGo 4.2.0, after visiting a web site ...)
@@ -18015,11 +18015,11 @@ CVE-2018-6834 (static/js/pad_utils.js in Etherpad Lite before v1.6.3 has XSS via
CVE-2018-6833
RESERVED
CVE-2018-6832 (Stack-based buffer overflow in the getSWFlag function in Foscam ...)
- TODO: check
+ NOT-FOR-US: Foscam Cameras
CVE-2018-6831 (The setSystemTime function in Foscam Cameras C1 Lite V3, and C1 V3 ...)
- TODO: check
+ NOT-FOR-US: Foscam Cameras
CVE-2018-6830 (Directory traversal vulnerability in Foscam Cameras C1 Lite V3, and C1 ...)
- TODO: check
+ NOT-FOR-US: Foscam Cameras
CVE-2018-6829 (cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt ...)
- libgcrypt20 <unfixed> (unimportant)
- libgcrypt11 <removed> (unimportant)
@@ -23802,113 +23802,113 @@ CVE-2018-5001 (Adobe Flash Player versions 29.0.0.171 and earlier have an ...)
CVE-2018-5000 (Adobe Flash Player versions 29.0.0.171 and earlier have an Integer ...)
NOT-FOR-US: Adobe
CVE-2018-4999 (Adobe Acrobat and Reader versions 2018.009.20050 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4998 (Adobe Acrobat and Reader versions 2018.009.20050 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4997 (Adobe Acrobat and Reader versions 2018.009.20050 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4996 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4995 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4994 (Adobe Connect versions 9.7.5 and earlier have an exploitable ...)
NOT-FOR-US: Adobe
CVE-2018-4993 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4992 (Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier ...)
NOT-FOR-US: Adobe
CVE-2018-4991 (Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier ...)
NOT-FOR-US: Adobe
CVE-2018-4990 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4989 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4988 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4987 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4986 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4985 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4984 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4983 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4982 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4981 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4980 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4979 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4978 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4977 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4976 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4975 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4974 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4973 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4972 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4971 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4970 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4969 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4968 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4967 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4966 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4965 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4964 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4963 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4962 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4961 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4960 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4959 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4958 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4957 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4956 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4955 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4954 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4953 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4952 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
NOT-FOR-US: VMware Xenon
CVE-2018-4951 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4950 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4949 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4948 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4947 (Adobe Acrobat and Reader versions 2018.011.20038 and earlier, ...)
NOT-FOR-US: VMware Xenon
CVE-2018-4946 (Adobe Photoshop CC versions 19.1.3 and earlier, 18.1.3 and earlier, and ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2018-4945 (Adobe Flash Player versions 29.0.0.171 and earlier have a Type ...)
NOT-FOR-US: Adobe
CVE-2018-4944 (Adobe Flash Player versions 29.0.0.140 and earlier have an exploitable ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/07c53971130c366c7d6ad575ceb9c31ef9aab2bd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/07c53971130c366c7d6ad575ceb9c31ef9aab2bd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180709/d88e7937/attachment.html>
More information about the debian-security-tracker-commits
mailing list