[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Jul 12 21:22:41 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
71835e87 by Salvatore Bonaccorso at 2018-07-12T22:22:21+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,15 +1,15 @@
 CVE-2018-14014 (In waimai Super Cms 20150505, there is a CSRF vulnerability that can ...)
-	TODO: check
+	NOT-FOR-US: waimai Super Cms
 CVE-2018-14013
 	RESERVED
 CVE-2018-14012 (WolfSight CMS 3.2 allows SQL injection via the PATH_INFO to the default ...)
-	TODO: check
+	NOT-FOR-US: WolfSight CMS
 CVE-2018-14011
 	RESERVED
 CVE-2018-14010
 	RESERVED
 CVE-2018-14009 (Codiad through 2.8.4 allows Remote Code Execution, a different ...)
-	TODO: check
+	NOT-FOR-US: Codiad
 CVE-2018-14008
 	RESERVED
 CVE-2018-14007
@@ -17,21 +17,21 @@ CVE-2018-14007
 CVE-2018-14006 (An integer overflow vulnerability exists in the function ...)
 	TODO: check
 CVE-2018-14005 (An integer overflow vulnerability exists in the function transferAny of ...)
-	TODO: check
+	NOT-FOR-US: Malaysia coins (Xmc)
 CVE-2018-14004 (An integer overflow vulnerability exists in the function ...)
-	TODO: check
+	NOT-FOR-US: GlobeCoin (GLB)
 CVE-2018-14003 (An integer overflow vulnerability exists in the function batchTransfer ...)
-	TODO: check
+	NOT-FOR-US: WeMediaChain (WMC)
 CVE-2018-14002 (An integer overflow vulnerability exists in the function distribute of ...)
-	TODO: check
+	NOT-FOR-US: MP3 Coin (MP3)
 CVE-2018-14001 (An integer overflow vulnerability exists in the function batchTransfer ...)
-	TODO: check
+	NOT-FOR-US: SHARKTECH (SKT)
 CVE-2018-14000
 	RESERVED
 CVE-2018-13999 (Catfish CMS v4.7.9 allows XSS via the admin/Index/write.html ...)
-	TODO: check
+	NOT-FOR-US: Catfish CMS
 CVE-2018-13998 (ClipperCMS 1.3.3 has stored XSS via the Full Name field of (1) Security ...)
-	TODO: check
+	NOT-FOR-US: ClipperCMS
 CVE-2018-13997 (Genann through 2018-07-08 has a SEGV in genann_run in genann.c. ...)
 	TODO: check
 CVE-2018-13996 (Genann through 2018-07-08 has a stack-based buffer over-read in ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/71835e8735a609d44b5bf2920e7ccd2b01f0d659

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/71835e8735a609d44b5bf2920e7ccd2b01f0d659
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180712/3162a06a/attachment.html>

More information about the debian-security-tracker-commits mailing list