[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
carnil at debian.org
Thu Mar 15 21:32:27 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
569d1726 by Salvatore Bonaccorso at 2018-03-15T22:32:11+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -4611,7 +4611,7 @@ CVE-2018-6959
CVE-2018-6958
RESERVED
CVE-2018-6957 (VMware Workstation (14.x before 14.1.1, 12.x) and Fusion (10.x before ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2017-18188 (OpenRC opentmpfiles through 0.1.3, when the fs.protected_hardlinks ...)
NOT-FOR-US: opentmpfiles
CVE-2017-18187 (In ARM mbed TLS before 2.7.0, there is a bounds-check bypass through an ...)
@@ -6785,31 +6785,31 @@ CVE-2018-6233
CVE-2018-6232
RESERVED
CVE-2018-6231 (A server auth command injection authentication bypass vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6230 (A SQL injection vulnerability in an Trend Micro Email Encryption ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6229 (A SQL injection vulnerability in an Trend Micro Email Encryption ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6228 (A SQL injection vulnerability in a Trend Micro Email Encryption ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6227 (A stored cross-site scripting (XSS) vulnerability in Trend Micro Email ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6226 (Reflected cross-site scripting (XSS) vulnerabilities in two Trend ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6225 (An XML external entity injection (XXE) vulnerability in Trend Micro ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6224 (A lack of cross-site request forgery (CSRF) protection vulnerability ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6223 (A missing authentication for appliance registration vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6222 (Arbitrary logs location in Trend Micro Email Encryption Gateway 5.5 ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6221 (An unvalidated software update vulnerability in Trend Micro Email ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6220 (An arbitrary file write vulnerability in Trend Micro Email Encryption ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6219 (An Insecure Update via HTTP vulnerability in Trend Micro Email ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2018-6218 (A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking ...)
NOT-FOR-US: Trend Micro
CVE-2018-6217 (The WStr::_alloc_iostr_data() function in kso.dll in Kingsoft WPS ...)
@@ -19701,7 +19701,7 @@ CVE-2018-1321
CVE-2018-1320
RESERVED
CVE-2018-1319 (In Apache Allura prior to 1.8.1, attackers may craft URLs that cause ...)
- TODO: check
+ NOT-FOR-US: Apache Allura
CVE-2018-1318
RESERVED
CVE-2018-1317
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/569d172640b745cdba24d6b256d4828c0d4ebc68
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/569d172640b745cdba24d6b256d4828c0d4ebc68
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180315/2a70b04e/attachment-0001.html>
More information about the Secure-testing-commits
mailing list