[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Thu May 10 09:20:54 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
275f9db2 by Salvatore Bonaccorso at 2018-05-10T10:20:33+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5,7 +5,7 @@ CVE-2018-10963 (The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIF
 	- tiff3 <removed>
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2795
 CVE-2018-10962 (An issue was discovered in Shanghai 2345 Security Guard 3.7.0. ...)
-	TODO: check
+	NOT-FOR-US: Shanghai 2345 Security Guard
 CVE-2018-10961
 	RESERVED
 CVE-2018-10960
@@ -15,17 +15,17 @@ CVE-2018-10959
 CVE-2018-10958 (In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT ...)
 	TODO: check
 CVE-2018-10957 (CSRF exists on D-Link DIR-868L devices, leading to (for example) a ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2018-10956
 	RESERVED
 CVE-2018-10955 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
-	TODO: check
+	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10954 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
-	TODO: check
+	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10953 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
-	TODO: check
+	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10952 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
-	TODO: check
+	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10951 (mailboxd in Zimbra Collaboration Suite 8.8 before 8.8.8; 8.7 before ...)
 	TODO: check
 CVE-2018-10950 (mailboxd in Zimbra Collaboration Suite 8.8 before 8.8.8; 8.7 before ...)
@@ -49,7 +49,7 @@ CVE-2018-10944
 CVE-2018-10943
 	RESERVED
 CVE-2018-10942 (modules/attributewizardpro/file_upload.php in the Attribute Wizard ...)
-	TODO: check
+	NOT-FOR-US: Attribute Wizard addon for PrestaShop
 CVE-2018-10941
 	RESERVED
 CVE-2018-10940 (The cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c in the ...)
@@ -1529,7 +1529,7 @@ CVE-2018-10316 (Netwide Assembler (NASM) 2.14rc0 has an endless while loop in th
 CVE-2018-10315
 	RESERVED
 CVE-2018-10314 (Cross-site scripting (XSS) vulnerability in Open-AudIT Community 2.2.0 ...)
-	TODO: check
+	NOT-FOR-US: Open-AudIT Community
 CVE-2018-10313 (WUZHI CMS 4.1.0 allows persistent XSS via the form%5Bqq_10%5D parameter ...)
 	NOT-FOR-US: WUZHI CMS
 CVE-2018-10312 (index.php?m=member&v=pw_reset in WUZHI CMS 4.1.0 allows CSRF to change ...)
@@ -4383,9 +4383,9 @@ CVE-2018-9114
 CVE-2018-9113 (Centers for Disease Control and Prevention MicrobeTRACE 0.1.12 allows ...)
 	NOT-FOR-US: Centers for Disease Control and Prevention MicrobeTRACE
 CVE-2018-9112 (A low privileged admin account with a weak default password of admin ...)
-	TODO: check
+	NOT-FOR-US: Foxconn FEMTO AP-FC4064-T AP_GT_B38_5.8.3lb15-W47 LTE
 CVE-2018-9111 (Cross Site Scripting (XSS) exists on the Foxconn FEMTO AP-FC4064-T ...)
-	TODO: check
+	NOT-FOR-US: Foxconn FEMTO AP-FC4064-T AP_GT_B38_5.8.3lb15-W47 LTE
 CVE-2018-9110 (Studio 42 elFinder before 2.1.37 on Windows has Directory Traversal via ...)
 	NOT-FOR-US: Studio 42 elFinder
 CVE-2018-9109 (Studio 42 elFinder before 2.1.36 has Directory Traversal via the ...)
@@ -5036,7 +5036,7 @@ CVE-2018-8862
 CVE-2018-8861 (Vulnerabilities within the Philips Brilliance CT kiosk environment ...)
 	NOT-FOR-US: Philips Brilliance
 CVE-2018-8860 (In Vecna VGo Robot versions prior to 3.0.3.52164, an attacker may be ...)
-	TODO: check
+	NOT-FOR-US: Vecna VGo Robot
 CVE-2018-8859
 	RESERVED
 CVE-2018-8858
@@ -5117,7 +5117,7 @@ CVE-2018-8826 (ASUS RT-AC51U, RT-AC58U, RT-AC66U, RT-AC1750, RT-ACRH13, and RT-N
 CVE-2018-8825
 	RESERVED
 CVE-2018-8824 (modules/bamegamenu/ajax_phpcode.php in the Responsive Mega Menu ...)
-	TODO: check
+	NOT-FOR-US: Responsive Mega Menu Pro module for PrestaShop
 CVE-2018-8823 (modules/bamegamenu/ajax_phpcode.php in the Responsive Mega Menu ...)
 	NOT-FOR-US: Responsive Mega Menu Pro module for PrestaShop
 CVE-2018-8822 (Incorrect buffer length handling in the ncp_read_kernel function in ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/275f9db2e2de7f6d5f32135fbb0d3392b74d5ea3

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/275f9db2e2de7f6d5f32135fbb0d3392b74d5ea3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180510/7fcf5b6c/attachment.html>

More information about the debian-security-tracker-commits mailing list