[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed Jul 11 21:24:37 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1e1a7162 by Salvatore Bonaccorso at 2018-07-11T22:24:17+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -9,7 +9,7 @@ CVE-2018-13991
CVE-2018-13990
RESERVED
CVE-2018-13989 (Grundig Smart Inter at ctive TV 3.0 devices allow CSRF attacks via a POST ...)
- TODO: check
+ NOT-FOR-US: Grundig Smart Inter at ctive TV 3.0 devices
CVE-2018-13988
RESERVED
CVE-2018-13987
@@ -8360,11 +8360,11 @@ CVE-2018-10637
CVE-2018-10636
RESERVED
CVE-2018-10635 (In Universal Robots Robot Controllers Version CB 3.1, SW Version ...)
- TODO: check
+ NOT-FOR-US: Universal Robots
CVE-2018-10634
RESERVED
CVE-2018-10633 (Universal Robots Robot Controllers Version CB 3.1, SW Version ...)
- TODO: check
+ NOT-FOR-US: Universal Robots
CVE-2018-10632
RESERVED
CVE-2018-10631
@@ -9346,9 +9346,9 @@ CVE-2018-10234 (Authenticated Cross site Scripting exists in the User Profile &a
CVE-2018-10233 (The User Profile & Membership plugin before 2.0.7 for WordPress has no ...)
NOT-FOR-US: User Profile & Membership plugin for WordPress
CVE-2018-10232 (Cross-site request forgery (CSRF) vulnerability in TOPdesk before ...)
- TODO: check
+ NOT-FOR-US: TOPdesk
CVE-2018-10231 (Cross-site scripting (XSS) vulnerability in TOPdesk before 8.05.017 ...)
- TODO: check
+ NOT-FOR-US: TOPdesk
CVE-2018-10230 (Zend Debugger in Zend Server before 9.1.3 has XSS, aka ZSR-2455. ...)
NOT-FOR-US: Zend Server
CVE-2018-10229 (A hardware vulnerability in GPU memory modules allows attackers to ...)
@@ -14052,15 +14052,15 @@ CVE-2018-8329
CVE-2018-8328
RESERVED
CVE-2018-8327 (A remote code execution vulnerability exists in PowerShell Editor ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8326 (A cross-site-scripting (XSS) vulnerability exists when an open source ...)
TODO: check
CVE-2018-8325 (An information disclosure vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8324 (An information disclosure vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8323 (An elevation of privilege vulnerability exists when Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8322
RESERVED
CVE-2018-8321
@@ -14078,43 +14078,43 @@ CVE-2018-8316
CVE-2018-8315
RESERVED
CVE-2018-8314 (An elevation of privilege vulnerability exists when Windows fails a ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8313 (An elevation of privilege vulnerability exists in the way that the ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8312 (A remote code execution vulnerability exists when Microsoft Access ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8311 (A remote code execution vulnerability exists when Skype for Business ...)
TODO: check
CVE-2018-8310 (A tampering vulnerability exists when Microsoft Outlook does not ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8309 (A denial of service vulnerability exists when Windows improperly ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8308 (An elevation of privilege vulnerability exists when the Windows kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8307 (A security feature bypass vulnerability exists when Microsoft WordPad ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8306 (A command injection vulnerability exists in the Microsoft Wireless ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8305 (An information disclosure vulnerability exists in Windows Mail Client ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8304 (A denial of service vulnerability exists in Windows Domain Name System ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8303
RESERVED
CVE-2018-8302
RESERVED
CVE-2018-8301 (A remote code execution vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8300 (A remote code execution vulnerability exists in Microsoft SharePoint ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8299 (An elevation of privilege vulnerability exists when Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8298 (A remote code execution vulnerability exists in the way that the ...)
TODO: check
CVE-2018-8297 (An information disclosure vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8296 (A remote code execution vulnerability exists in the way that the ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8295
RESERVED
CVE-2018-8294 (A remote code execution vulnerability exists in the way that the ...)
@@ -14124,15 +14124,15 @@ CVE-2018-8293
CVE-2018-8292
RESERVED
CVE-2018-8291 (A remote code execution vulnerability exists in the way the scripting ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8290 (A remote code execution vulnerability exists in the way that the ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8289 (An information disclosure vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8288 (A remote code execution vulnerability exists in the way the scripting ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8287 (A remote code execution vulnerability exists in the way the scripting ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8286 (A remote code execution vulnerability exists in the way that the ...)
TODO: check
CVE-2018-8285
@@ -14142,23 +14142,23 @@ CVE-2018-8284 (A remote code execution vulnerability exists when the Microsoft .
CVE-2018-8283 (A remote code execution vulnerability exists in the way that the ...)
TODO: check
CVE-2018-8282 (An elevation of privilege vulnerability exists in Windows when the ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8281 (A remote code execution vulnerability exists in Microsoft Office ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8280 (A remote code execution vulnerability exists in the way that the ...)
TODO: check
CVE-2018-8279 (A remote code execution vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8278 (A spoofing vulnerability exists when Microsoft Edge improperly handles ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8277
RESERVED
CVE-2018-8276 (A security feature bypass vulnerability exists in the Microsoft Chakra ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8275 (A remote code execution vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8274 (A remote code execution vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8273
RESERVED
CVE-2018-8272
@@ -14182,7 +14182,7 @@ CVE-2018-8264
CVE-2018-8263
RESERVED
CVE-2018-8262 (A remote code execution vulnerability exists when Microsoft Edge ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8261
RESERVED
CVE-2018-8260 (A Remote Code Execution vulnerability exists in .NET software when the ...)
@@ -14242,7 +14242,7 @@ CVE-2018-8234 (An information disclosure vulnerability exists when Microsoft Edg
CVE-2018-8233 (An elevation of privilege vulnerability exists in Windows when the ...)
NOT-FOR-US: Microsoft
CVE-2018-8232 (A Tampering vulnerability exists when Microsoft Macro Assembler ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8231 (A remote code execution vulnerability exists when HTTP Protocol Stack ...)
NOT-FOR-US: Microsoft
CVE-2018-8230
@@ -14262,7 +14262,7 @@ CVE-2018-8224 (An elevation of privilege vulnerability exists when the Windows k
CVE-2018-8223
RESERVED
CVE-2018-8222 (A security feature bypass vulnerability exists in Device Guard that ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8221 (A security feature bypass vulnerability exists in Device Guard that ...)
NOT-FOR-US: Microsoft
CVE-2018-8220
@@ -14294,7 +14294,7 @@ CVE-2018-8208 (An elevation of privilege vulnerability exists in Windows when De
CVE-2018-8207 (An information disclosure vulnerability exists when the Windows kernel ...)
NOT-FOR-US: Microsoft
CVE-2018-8206 (A denial of service vulnerability exists when Windows improperly ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8205 (A denial of service vulnerability exists when Windows improperly ...)
NOT-FOR-US: Microsoft
CVE-2018-8204
@@ -14362,7 +14362,7 @@ CVE-2018-8174 (A remote code execution vulnerability exists in the way that the
CVE-2018-8173 (A remote code execution vulnerability exists in Microsoft InfoPath ...)
NOT-FOR-US: Microsoft
CVE-2018-8172 (A remote code execution vulnerability exists in Visual Studio software ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8171 (A Security Feature Bypass vulnerability exists in ASP.NET when the ...)
TODO: check
CVE-2018-8170 (An elevation of privilege vulnerability exists in the way that the ...)
@@ -18080,11 +18080,11 @@ CVE-2018-6969
CVE-2018-6968 (The VMware AirWatch Agent for Android prior to 8.2 and AirWatch Agent ...)
NOT-FOR-US: VMware AirWatch Agent
CVE-2018-6967 (VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation (14.x ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2018-6966 (VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation (14.x ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2018-6965 (VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation (14.x ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2018-6964 (VMware Horizon Client for Linux (4.x before 4.8.0 and prior) contains ...)
NOT-FOR-US: VMware
CVE-2018-6963 (VMware Workstation (14.x before 14.1.2) and Fusion (10.x before ...)
@@ -22661,7 +22661,7 @@ CVE-2018-5555
CVE-2018-5554
RESERVED
CVE-2018-5553 (The Crestron Console service running on DGE-100, DM-DGE-200-C, and ...)
- TODO: check
+ NOT-FOR-US: Crestron Console service running on DGE-100, DM-DGE-200-C, and TS-1542-C devices
CVE-2018-5552 (Versions of DocuTrac QuicDoc and Office Therapy that ship with ...)
NOT-FOR-US: DocuTrac QuicDoc and Office Therapy
CVE-2018-5551 (Versions of DocuTrac QuicDoc and Office Therapy that ship with ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1e1a71629ceb13f3bd76b5370b7059636995aa65
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1e1a71629ceb13f3bd76b5370b7059636995aa65
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180711/38945f70/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list