[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Thu Mar 22 11:14:19 UTC 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d96fa587 by Moritz Muehlenhoff at 2018-03-22T12:13:58+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3390,31 +3390,31 @@ CVE-2018-7527
 CVE-2018-7526
 	RESERVED
 CVE-2018-7525 (In Omron CX-Supervisor Versions 3.30 and prior, processing a malformed ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Supervisor
 CVE-2018-7524
 	RESERVED
 CVE-2018-7523 (In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Supervisor
 CVE-2018-7522
 	RESERVED
 CVE-2018-7521 (In Omron CX-Supervisor Versions 3.30 and prior, use after free ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Supervisor
 CVE-2018-7520
 	RESERVED
 CVE-2018-7519 (In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Supervisor
 CVE-2018-7518
 	RESERVED
 CVE-2018-7517 (In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Supervisor
 CVE-2018-7516
 	RESERVED
 CVE-2018-7515 (In Omron CX-Supervisor Versions 3.30 and prior, access of ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Supervisor
 CVE-2018-7514
 	RESERVED
 CVE-2018-7513 (In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed ...)
-	TODO: check
+	NOT-FOR-US: Omron CX-Supervisor
 CVE-2018-7512
 	RESERVED
 CVE-2018-7511 (In Eaton ELCSoft versions 2.04.02 and prior, there are multiple cases ...)
@@ -13891,7 +13891,7 @@ CVE-2018-3628
 CVE-2018-3627
 	RESERVED
 CVE-2018-3626 (Edger8r tool in the Intel SGX SDK before version 2.1.2 (Linux) and ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2018-3625
 	RESERVED
 CVE-2018-3624
@@ -14750,7 +14750,7 @@ CVE-2017-17745 (Cross-site scripting (XSS) vulnerability in system_name_set.cgi 
 CVE-2017-17744 (A cross-site scripting (XSS) vulnerability in the custom-map plugin ...)
 	NOT-FOR-US: custom-map plugin for WordPress
 CVE-2017-17743 (Improper input sanitization within the restricted administration shell ...)
-	TODO: check
+	NOT-FOR-US: UCOPIA Wireless Appliance
 CVE-2017-17742
 	RESERVED
 CVE-2017-17741 (The KVM implementation in the Linux kernel through 4.14.7 allows ...)
@@ -19827,13 +19827,13 @@ CVE-2018-1349
 CVE-2018-1348
 	RESERVED
 CVE-2018-1347 (The administrative web interface in NetIQ iManager, versions prior to ...)
-	TODO: check
+	NOT-FOR-US: NetIQ
 CVE-2018-1346 (Addresses denial of service attack to eDirectory versions prior to ...)
-	TODO: check
+	NOT-FOR-US: NetIQ
 CVE-2018-1345 (NetIQ iManager, versions prior to 3.1, under some circumstances could ...)
-	TODO: check
+	NOT-FOR-US: NetIQ
 CVE-2018-1344 (Addresses potential communication downgrade attack in NetIQ iManager ...)
-	TODO: check
+	NOT-FOR-US: NetIQ
 CVE-2018-1343 (PAM exposure enabling unauthenticated access to remote host ...)
 	NOT-FOR-US: NetIQ
 CVE-2018-1342 (A Vulnerability exists on Admin Console where an attacker can upload ...)
@@ -20459,9 +20459,9 @@ CVE-2018-1232
 CVE-2018-1231
 	RESERVED
 CVE-2018-1230 (Pivotal Spring Batch Admin, all versions, does not contain cross site ...)
-	TODO: check
+	NOT-FOR-US: Pivotal
 CVE-2018-1229 (Pivotal Spring Batch Admin, all versions, contains a stored XSS ...)
-	TODO: check
+	NOT-FOR-US: Pivotal
 CVE-2018-1228
 	RESERVED
 CVE-2018-1227 (Pivotal Concourse after 2018-03-05 might allow remote attackers to ...)
@@ -20527,7 +20527,7 @@ CVE-2018-1199 (Spring Security (Spring Security 4.1.x before 4.1.5, 4.2.x before
 CVE-2018-1198
 	RESERVED
 CVE-2018-1197 (In Windows Stemcells versions prior to 1200.14, apps running inside ...)
-	TODO: check
+	NOT-FOR-US: Windows Stemcells
 CVE-2018-1196 (Spring Boot supports an embedded launch script that can be used to ...)
 	NOT-FOR-US: Spring Boot
 CVE-2018-1195 (In Cloud Controller versions prior to 1.46.0, cf-deployment versions ...)
@@ -20734,7 +20734,7 @@ CVE-2018-1143
 CVE-2018-1142
 	RESERVED
 CVE-2018-1141 (When installing Nessus to a directory outside of the default location, ...)
-	TODO: check
+	NOT-FOR-US: Nessus
 CVE-2017-17425 (This vulnerability allows remote attackers to execute arbitrary code ...)
 	NOT-FOR-US: Quest NetVault Backup
 CVE-2017-17424 (This vulnerability allows remote attackers to execute arbitrary code ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d96fa587f1182f7864b3aa668d8c3821f8ba0127

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d96fa587f1182f7864b3aa668d8c3821f8ba0127
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180322/09e150ad/attachment.html>

More information about the Secure-testing-commits mailing list