[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Thu Jun 14 22:24:15 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
72ccfe6e by Salvatore Bonaccorso at 2018-06-14T23:23:47+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -404,15 +404,15 @@ CVE-2018-12230
 CVE-2018-12229 (Cross-site scripting (XSS) vulnerability in Public Knowledge Project ...)
 	TODO: check
 CVE-2017-18291 (An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ...)
-	TODO: check
+	NOT-FOR-US: PvPGN Stats (relates to pvpgn, but the PHP utilities allowing integration with a PvPGN game server)
 CVE-2017-18290 (An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ...)
-	TODO: check
+	NOT-FOR-US: PvPGN Stats (relates to pvpgn, but the PHP utilities allowing integration with a PvPGN game server)
 CVE-2017-18289 (An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exist in ...)
-	TODO: check
+	NOT-FOR-US: PvPGN Stats (relates to pvpgn, but the PHP utilities allowing integration with a PvPGN game server)
 CVE-2017-18288 (An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ...)
-	TODO: check
+	NOT-FOR-US: PvPGN Stats (relates to pvpgn, but the PHP utilities allowing integration with a PvPGN game server)
 CVE-2017-18287 (An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ...)
-	TODO: check
+	NOT-FOR-US: PvPGN Stats (relates to pvpgn, but the PHP utilities allowing integration with a PvPGN game server)
 CVE-2018-12233 (In the ea_get function in fs/jfs/xattr.c in the Linux kernel through ...)
 	- linux <unfixed>
 	NOTE: https://lkml.org/lkml/2018/6/2/2
@@ -653,7 +653,7 @@ CVE-2018-12116
 CVE-2018-12115
 	RESERVED
 CVE-2018-12114 (Maccms 10 allows CSRF via admin.php/admin/admin/info.html to add user ...)
-	TODO: check
+	NOT-FOR-US: Maccms
 CVE-2018-12113
 	RESERVED
 CVE-2018-12112 (md_build_attribute in md4c.c in md4c 0.2.6 allows remote attackers to ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/72ccfe6e7f3cd2cca09f605cacc9e47b3bbaced7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/72ccfe6e7f3cd2cca09f605cacc9e47b3bbaced7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180614/3ba1998e/attachment.html>

More information about the debian-security-tracker-commits mailing list