[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
jmm at debian.org
Sun Mar 4 20:39:55 UTC 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5719b7e9 by Moritz Muehlenhoff at 2018-03-04T21:39:36+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -27718,13 +27718,13 @@ CVE-2017-14804 (The build package before 20171128 did not check directory names
CVE-2017-14803 (In NetIQ Access Manager 4.3 and 4.4, a bug exists in Identity Server ...)
NOT-FOR-US: NetIQ Access Manager
CVE-2017-14802 (Novell Access Manager Admin Console and IDP servers before 4.3.3 have ...)
- TODO: check
+ NOT-FOR-US: Novell Access Manager Admin Console
CVE-2017-14801 (Reflected XSS in the NetIQ Access Manager before 4.3.3 allowed ...)
- TODO: check
+ NOT-FOR-US: NetIQ
CVE-2017-14800 (A reflected cross site scripting attack in the NetIQ Access Manager ...)
- TODO: check
+ NOT-FOR-US: NetIQ
CVE-2017-14799 (A cross site scripting attack in handling the ESP login parameter ...)
- TODO: check
+ NOT-FOR-US: NetIQ Access Manager
CVE-2017-14798 (A race condition in the postgresql init script could be used by ...)
TODO: check
CVE-2017-14797 (Lack of Transport Encryption in the public API in Philips Hue Bridge ...)
@@ -57795,7 +57795,7 @@ CVE-2017-5191 (An XSS vulnerability on the /NAGErrors URI in NetIQ Access Manage
CVE-2017-5190 (NetIQ Access Manager 4.2 before SP3 HF1 and 4.3 before SP1 HF1, when ...)
NOT-FOR-US: NetIQ Access Manager
CVE-2017-5189 (NetIQ iManager before 3.0.3 delivered a SSL private key in a Java ...)
- TODO: check
+ NOT-FOR-US: NetIQ iManager
CVE-2017-5188 (The bs_worker code in open build service before 20170320 followed ...)
TODO: check
CVE-2017-5187 (A Cross-Site Request Forgery (CWE-352) vulnerability in Directory ...)
@@ -67042,7 +67042,7 @@ CVE-2017-1789
CVE-2017-1788
RESERVED
CVE-2017-1787 (IBM Publishing Engine 2.1.2 and 6.0.5 contains an undisclosed ...)
- TODO: check
+ NOT-FOR-US: IBM Publishing Engine
CVE-2017-1786
RESERVED
CVE-2017-1785 (IBM API Connect 5.0.7 and 5.0.8 could allow an authenticated remote ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5719b7e99bebaa64990ff16c3450665173be8d56
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5719b7e99bebaa64990ff16c3450665173be8d56
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180304/18bc1d55/attachment-0001.html>
More information about the Secure-testing-commits
mailing list