[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
carnil at debian.org
Wed Jul 11 21:46:53 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
06037343 by Salvatore Bonaccorso at 2018-07-11T22:46:31+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -31209,25 +31209,25 @@ CVE-2018-2442
CVE-2018-2441
RESERVED
CVE-2018-2440 (Under certain circumstances SAP Dynamic Authorization Management (DAM) ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2439 (The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2438 (The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2437 (The SAP Internet Graphics Service (IGS), 7.20, 7.20EXT, 7.45, 7.49, ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2436 (Executing transaction WRCK in SAP R/3 Enterprise Retail (EHP6) does ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2435 (SAP NetWeaver Enterprise Portal from 7.0 to 7.02, 7.11, 7.20, 7.30, ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2434 (A content spoofing vulnerability in the following components allows to ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2433 (SAP Gateway (SAP KERNEL 32 NUC, SAP KERNEL 32 Unicode, SAP KERNEL 64 ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2432 (SAP BusinessObjects Business Intelligence (BI Launchpad and Central ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2431 (SAP BusinessObjects Business Intelligence Suite, versions 4.10 and ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2430
RESERVED
CVE-2018-2429
@@ -31235,7 +31235,7 @@ CVE-2018-2429
CVE-2018-2428 (Under certain conditions SAP UI5 Handler allows an attacker to access ...)
NOT-FOR-US: SAP
CVE-2018-2427 (SAP BusinessObjects Business Intelligence Suite, versions 4.10 and ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2018-2426
RESERVED
CVE-2018-2425 (Under certain conditions, SAP Business One, 9.2, 9.3, for SAP HANA ...)
@@ -33004,7 +33004,7 @@ CVE-2018-1568
CVE-2018-1567
RESERVED
CVE-2018-1566 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1565 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
NOT-FOR-US: IBM
CVE-2018-1564
@@ -33038,7 +33038,7 @@ CVE-2018-1551
CVE-2018-1550
RESERVED
CVE-2018-1549 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1548 (IBM API Connect 2018.1.0.0, 2018.2.1, 2018.2.2, 2018.2.3, and 2018.2.4 ...)
NOT-FOR-US: IBM
CVE-2018-1547 (IBM Robotic Process Automation with Automation Anywhere 10.0 could ...)
@@ -33090,11 +33090,11 @@ CVE-2018-1525
CVE-2018-1524
RESERVED
CVE-2018-1523 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1522
RESERVED
CVE-2018-1521 (IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1520
RESERVED
CVE-2018-1519
@@ -33152,7 +33152,7 @@ CVE-2018-1494 (IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.2 and 6.0 thr
CVE-2018-1493
RESERVED
CVE-2018-1492 (IBM Jazz Foundation products could allow a user with physical access ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1491
RESERVED
CVE-2018-1490
@@ -33162,7 +33162,7 @@ CVE-2018-1489
CVE-2018-1488 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5 ...)
NOT-FOR-US: IBM
CVE-2018-1487 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1486
RESERVED
CVE-2018-1485
@@ -33220,7 +33220,7 @@ CVE-2018-1460 (IBM Netezza Platform Software (IBM PureData System for Analytics
CVE-2018-1459 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
NOT-FOR-US: IBM
CVE-2018-1458 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1457 (An undisclosed vulnerability in IBM Rational DOORS 9.5.1 through ...)
NOT-FOR-US: IBM
CVE-2018-1456 (IBM Rhapsody DM 5.0 through 5.0.2 and 6.0 through 6.0.5 is vulnerable ...)
@@ -33290,7 +33290,7 @@ CVE-2018-1425 (IBM Security Guardium Big Data Intelligence (SonarG) 3.1 uses wea
CVE-2018-1424
RESERVED
CVE-2018-1423 (IBM Jazz Foundation products could disclose sensitive information to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1422
RESERVED
CVE-2018-1421 (IBM WebSphere DataPower Appliances 7.1, 7.2, 7.5, 7.5.1, 7.5.2, and ...)
@@ -33320,9 +33320,9 @@ CVE-2018-1410 (IBM Notes Diagnostics (IBM Client Application Access and IBM Note
CVE-2018-1409 (IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) ...)
NOT-FOR-US: IBM Notes Diagnostics
CVE-2018-1408 (IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1407 (IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1406
RESERVED
CVE-2018-1405
@@ -33344,7 +33344,7 @@ CVE-2018-1398
CVE-2018-1397
RESERVED
CVE-2018-1396 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1395
RESERVED
CVE-2018-1394
@@ -84663,11 +84663,11 @@ CVE-2017-1795 (IBM WebSphere MQ 7.5, 8.0, and 9.0 through 9.0.4 could allow a lo
CVE-2017-1794
RESERVED
CVE-2017-1793 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1792 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1791 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1790 (IBM DOORS Next Generation (DNG/RRC) 5.0, 5.0.1, 5.0.2, and 6.0 through ...)
NOT-FOR-US: IBM DOORS Next Generation
CVE-2017-1789 (IBM Tivoli Monitoring V6 6.2.3 and 6.3.0 could allow an ...)
@@ -84773,7 +84773,7 @@ CVE-2017-1740 (IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, 7.0.1, a
CVE-2017-1739 (IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, and 7.0.1 is ...)
NOT-FOR-US: IBM Curam Social Program Management
CVE-2017-1738 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1737
RESERVED
CVE-2017-1736
@@ -84791,7 +84791,7 @@ CVE-2017-1731 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could pro
CVE-2017-1730
RESERVED
CVE-2017-1729 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1728
RESERVED
CVE-2017-1727 (IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 discloses sensitive ...)
@@ -181710,7 +181710,7 @@ CVE-2013-2974 (The BIRT viewer in IBM Tivoli Application Dependency Discovery Ma
CVE-2013-2973
RESERVED
CVE-2013-2972 (IBM WebSphere Cast Iron 6.3 allows remote attackers to bypass intended ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2971
RESERVED
CVE-2013-2970 (Unspecified vulnerability in IBM QRadar Security Information and Event ...)
@@ -181752,7 +181752,7 @@ CVE-2013-2953 (IBM InfoSphere Optim Data Growth for Oracle E-Business Suite 6.x,
CVE-2013-2952
RESERVED
CVE-2013-2951 (IBM WebSphere Portal 7.0.0.x and 8.0.0.x write passwords to a trace ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2950 (CRLF injection vulnerability in IBM WebSphere Portal 6.1.0.x before ...)
NOT-FOR-US: IBM WebSphere
CVE-2013-2949
@@ -189074,17 +189074,17 @@ CVE-2013-0596 (Cross-site scripting (XSS) vulnerability in the Administrative co
CVE-2013-0595 (Multiple cross-site scripting (XSS) vulnerabilities in iNotes 8.5.x in ...)
NOT-FOR-US: IBM Lotus Domino
CVE-2013-0594 (Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0593 (Unspecified vulnerability in the olch2x32 ActiveX control in IBM SPSS ...)
NOT-FOR-US: IBM SPSS SamplePower
CVE-2013-0592 (Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0591 (Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus ...)
NOT-FOR-US: IBM Lotus Domino
CVE-2013-0590 (Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus ...)
NOT-FOR-US: IBM Lotus Domino
CVE-2013-0589 (IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0588
RESERVED
CVE-2013-0587 (Multiple cross-site scripting (XSS) vulnerabilities in IBM WebSphere ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/060373431ea0aa66c4255f25bba4c384a74a8d5e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/060373431ea0aa66c4255f25bba4c384a74a8d5e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180711/f482853c/attachment.html>
More information about the debian-security-tracker-commits
mailing list