[Git][security-tracker-team/security-tracker][master] 2 commits: Process some NFUs

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0bbe7c11 by Salvatore Bonaccorso at 2018-06-16T16:21:33+02:00
Process some NFUs

- - - - -
99a5c357 by Salvatore Bonaccorso at 2018-06-16T16:22:28+02:00
Add CVE-2018-6516

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -9164,7 +9164,7 @@ CVE-2018-8821 (windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows att
 CVE-2018-8820 (An issue was discovered in Square 9 GlobalForms 6.2.x. A Time Based ...)
 	NOT-FOR-US: Square 9
 CVE-2018-8819 (An XXE issue was discovered in Automated Logic Corporation (ALC) ...)
-	TODO: check
+	NOT-FOR-US: Automated Logic Corporation (ALC) WebCTRL
 CVE-2018-8818
 	RESERVED
 CVE-2018-8817 (Wampserver before 3.1.3 has CSRF in add_vhost.php. ...)
@@ -14320,7 +14320,7 @@ CVE-2018-6970
 CVE-2018-6969
 	RESERVED
 CVE-2018-6968 (The VMware AirWatch Agent for Android prior to 8.2 and AirWatch Agent ...)
-	TODO: check
+	NOT-FOR-US: VMware AirWatch Agent
 CVE-2018-6967
 	RESERVED
 CVE-2018-6966
@@ -14334,7 +14334,7 @@ CVE-2018-6963 (VMware Workstation (14.x before 14.1.2) and Fusion (10.x before .
 CVE-2018-6962 (VMware Fusion (10.x before 10.1.2) contains a signature bypass ...)
 	NOT-FOR-US: VMware
 CVE-2018-6961 (VMware NSX SD-WAN Edge by VeloCloud prior to version 3.1.0 contains a ...)
-	TODO: check
+	NOT-FOR-US: VMware NSX SD-WAN Edge by VeloCloud
 CVE-2018-6960 (VMware Horizon DaaS (7.x before 8.0.0) contains a broken ...)
 	NOT-FOR-US: VMware Horizon DaaS
 CVE-2018-6959 (VMware vRealize Automation (vRA) prior to 7.4.0 contains a ...)
@@ -15123,9 +15123,9 @@ CVE-2018-6674 (Privilege Escalation vulnerability in Microsoft Windows client in
 CVE-2018-6673
 	RESERVED
 CVE-2018-6672 (Information disclosure vulnerability in McAfee ePolicy Orchestrator ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2018-6671 (Application Protection Bypass vulnerability in McAfee ePolicy ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2018-6670 (External Entity Attack vulnerability in the ePO extension in McAfee ...)
 	NOT-FOR-US: McAfee
 CVE-2018-6669
@@ -15782,7 +15782,7 @@ CVE-2018-6518 (Composr CMS 10.0.13 has XSS via the site_name parameter in a ...)
 CVE-2018-6517
 	RESERVED
 CVE-2018-6516 (On Windows only, with a specifically crafted configuration file an ...)
-	TODO: check
+	- puppet <not-affected> (Specific issue Windows only)
 CVE-2018-6515 (Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to ...)
 	- puppet <not-affected> (Specific issue Windows only)
 	NOTE: https://puppet.com/security/cve/CVE-2018-6515



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/86143657fd0ed285acb394d34467ccabdd97ad39...99a5c3571bf4db3d5b9757d98976026659564d48

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/86143657fd0ed285acb394d34467ccabdd97ad39...99a5c3571bf4db3d5b9757d98976026659564d48
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180616/571a2a8f/attachment.html>