[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Thu May 3 21:20:38 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
86ee7ada by Salvatore Bonaccorso at 2018-05-03T22:20:09+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7,13 +7,13 @@ CVE-2018-10718 (Stack-based buffer overflow in Activision Infinity Ward Call of 
 CVE-2018-10717 (The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not ...)
 	TODO: check
 CVE-2018-10716 (An issue was discovered in Shanghai 2345 Security Guard 3.7.0. ...)
-	TODO: check
+	NOT-FOR-US: Shanghai 2345 Security Guard
 CVE-2018-10715
 	RESERVED
 CVE-2018-10714
 	RESERVED
 CVE-2018-10713 (An issue was discovered on D-Link DSL-3782 EU 1.01 devices. An ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2018-10712
 	RESERVED
 CVE-2018-10711
@@ -308,9 +308,9 @@ CVE-2018-10580
 CVE-2018-10579
 	RESERVED
 CVE-2018-10578 (An issue was discovered on WatchGuard AP100, AP102, and AP200 devices ...)
-	TODO: check
+	NOT-FOR-US: WatchGuard AP100, AP102, and AP200 devices
 CVE-2018-10577 (An issue was discovered on WatchGuard AP100, AP102, and AP200 devices ...)
-	TODO: check
+	NOT-FOR-US: WatchGuard AP100, AP102, and AP200 devices
 CVE-2018-10576 (An issue was discovered on WatchGuard AP100, AP102, and AP200 devices ...)
 	NOT-FOR-US: WatchGuard devices
 CVE-2018-10575 (An issue was discovered on WatchGuard AP100, AP102, and AP200 devices ...)
@@ -330,17 +330,17 @@ CVE-2018-10570 (Frog CMS 0.9.5 has XSS in /install/index.php via the ...)
 CVE-2018-10569
 	RESERVED
 CVE-2018-10568 (XSS exists in Flexense DiskSorter Enterprise from v9.5.12 to v10.7. ...)
-	TODO: check
+	NOT-FOR-US: Flexense DiskSorter Enterprise
 CVE-2018-10567 (XSS exists in Flexense VX Search Enterprise from v10.1.12 to v10.7. ...)
-	TODO: check
+	NOT-FOR-US: Flexense VX Search Enterprise
 CVE-2018-10566 (XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7. ...)
-	TODO: check
+	NOT-FOR-US: Flexense DupScout Enterprise
 CVE-2018-10565 (XSS exists in Flexense DiskSavvy Enterprise from v10.4 to v10.7. ...)
-	TODO: check
+	NOT-FOR-US: Flexense DiskSavvy Enterprise
 CVE-2018-10564 (XSS exists in Flexense DiskPulse Enterprise from v10.4 to v10.7. ...)
-	TODO: check
+	NOT-FOR-US: Flexense DiskPulse Enterprise
 CVE-2018-10563 (An XSS in Flexense SyncBreeze affects all versions (tested from ...)
-	TODO: check
+	NOT-FOR-US: Flexense SyncBreeze
 CVE-2018-10562
 	RESERVED
 CVE-2018-10561
@@ -1003,7 +1003,7 @@ CVE-2018-10296 (MiniCMS V1.10 has XSS via the mc-admin/post-edit.php title param
 CVE-2018-10295 (ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add ...)
 	NOT-FOR-US: ChemCMS
 CVE-2018-10294 (Flexense DiskBoss Enterprise v7.4.28 to v9.1.16 has XSS. ...)
-	TODO: check
+	NOT-FOR-US: Flexense DiskBoss Enterprise
 CVE-2018-10293
 	RESERVED
 CVE-2018-10292
@@ -1337,15 +1337,15 @@ CVE-2018-10170 (NordVPN 6.12.7.0 for Windows suffers from a SYSTEM privilege esc
 CVE-2018-10169 (ProtonVPN 1.3.3 for Windows suffers from a SYSTEM privilege escalation ...)
 	NOT-FOR-US: ProtonVPN for Windows
 CVE-2018-10168 (TP-Link EAP Controller and Omada Controller versions ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2018-10167 (The web application backup file in the TP-Link EAP Controller and Omada ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2018-10166 (The web management interface in the TP-Link EAP Controller and Omada ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2018-10165 (Stored Cross-site scripting (XSS) vulnerability in the TP-Link EAP ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2018-10164 (Stored Cross-site scripting (XSS) vulnerability in the TP-Link EAP ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2018-10163
 	RESERVED
 CVE-2018-10162



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/86ee7ada9a7e4d622a12950d08032cef2d88426c

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/86ee7ada9a7e4d622a12950d08032cef2d88426c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180503/23a3ccb5/attachment.html>

More information about the debian-security-tracker-commits mailing list