[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Android NFUs

Moritz Muehlenhoff jmm at debian.org
Tue Mar 13 09:30:11 UTC 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
966a5647 by Moritz Muehlenhoff at 2018-03-13T10:29:50+01:00
Android NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -33239,22 +33239,30 @@ CVE-2017-13272
 	RESERVED
 CVE-2017-13271
 	RESERVED
+	NOT-FOR-US: Android kernel (no source release, so apparently not in mainline)
 CVE-2017-13270
 	RESERVED
+	NOT-FOR-US: Android kernel (no source release, so apparently not in mainline)
 CVE-2017-13269
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2017-13268
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2017-13267
 	RESERVED
 CVE-2017-13266
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2017-13265
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2017-13264
 	RESERVED
+	NOT-FOR-US: Android Media Framework
 CVE-2017-13263
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2017-13262
 	RESERVED
 CVE-2017-13261
@@ -33273,6 +33281,7 @@ CVE-2017-13255
 	RESERVED
 CVE-2017-13254
 	RESERVED
+	NOT-FOR-US: Android Media Framework
 CVE-2017-13253
 	RESERVED
 CVE-2017-13252
@@ -55220,13 +55229,13 @@ CVE-2017-6290
 CVE-2017-6289
 	RESERVED
 CVE-2017-6288 (NVIDIA libnvrm contains a possible out of bounds read due to a missing ...)
-	TODO: check
+	NOT-FOR-US: Nvidia component for Android
 CVE-2017-6287 (NVIDIA libnvrm contains a possible out of bounds read due to a missing ...)
-	TODO: check
+	NOT-FOR-US: Nvidia component for Android
 CVE-2017-6286 (NVIDIA libnvomx contains a possible out of bounds write due to a ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2017-6285 (NVIDIA libnvrm contains a possible out of bounds read due to a missing ...)
-	TODO: check
+	NOT-FOR-US: Nvidia component for Android
 CVE-2017-6284 (NVIDIA Security Engine contains a vulnerability in the Deterministic ...)
 	NOT-FOR-US: NVIDIA
 CVE-2017-6283 (NVIDIA Security Engine contains a vulnerability in the RSA function ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/966a5647ffaf4ff045d7c1e00e29c272d2049e3d

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/966a5647ffaf4ff045d7c1e00e29c272d2049e3d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180313/fa5d28b1/attachment.html>

More information about the Secure-testing-commits mailing list