[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Thu May 10 21:17:54 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6570e8ee by Salvatore Bonaccorso at 2018-05-10T22:17:37+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5,13 +5,13 @@ CVE-2018-10979
 CVE-2018-10978
 	RESERVED
 CVE-2018-10977 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
-	TODO: check
+	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10976 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
-	TODO: check
+	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10975 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
-	TODO: check
+	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10974 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
-	TODO: check
+	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10973 (An integer overflow in the transferMulti function of a smart contract ...)
 	TODO: check
 CVE-2018-10972 (An issue was discovered in Free Lossless Image Format (FLIF) 0.3. The ...)
@@ -746,7 +746,7 @@ CVE-2018-10657 (Matrix Synapse before 0.28.1 is prone to a denial of service fla
 CVE-2018-10656
 	RESERVED
 CVE-2018-10655 (DLPnpAuditor.exe in DeviceLock Plug and Play Auditor (freeware) 5.72 ...)
-	TODO: check
+	NOT-FOR-US: DeviceLock Plug and Play Auditor
 CVE-2018-10654
 	RESERVED
 CVE-2018-10653
@@ -2710,7 +2710,7 @@ CVE-2018-9851 (In Gxlcms QY v1.0.0713, Lib\Lib\Action\Admin\TplAction.class.php 
 CVE-2018-9850 (In Gxlcms QY v1.0.0713, Lib\Lib\Action\Admin\DataAction.class.php ...)
 	NOT-FOR-US: Gxlcms QY
 CVE-2018-9849 (Pulse Secure Pulse Connect Secure 8.1.x before 8.1R14, 8.2.x before ...)
-	TODO: check
+	NOT-FOR-US: Pulse Secure Pulse Connect Secure
 CVE-2018-9848 (In Gxlcms QY v1.0.0713, the upload function in ...)
 	NOT-FOR-US: Gxlcms QY
 CVE-2018-9847 (In Gxlcms QY v1.0.0713, the update function in ...)
@@ -4937,9 +4937,9 @@ CVE-2018-8917
 CVE-2018-8916
 	RESERVED
 CVE-2018-8915 (Cross-site scripting (XSS) vulnerability in Notification Center in ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2018-8914 (SQL injection vulnerability in UPnP DMA in Synology Media Server ...)
-	TODO: check
+	NOT-FOR-US: Synology Media Server
 CVE-2018-8913
 	RESERVED
 CVE-2018-8912 (Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note in ...)
@@ -4947,7 +4947,7 @@ CVE-2018-8912 (Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note
 CVE-2018-8911 (Cross-site scripting (XSS) vulnerability in Attachment Preview in ...)
 	NOT-FOR-US: Synology Note Station
 CVE-2018-8910 (Cross-site scripting (XSS) vulnerability in Attachment Preview in ...)
-	TODO: check
+	NOT-FOR-US: Synology
 CVE-2018-8909 (The Wire application before 2018-03-07 for Android allows attackers to ...)
 	NOT-FOR-US: Wire application for Android
 CVE-2018-8908 (An issue was discovered in /admin/?/user/add in Frog CMS 0.9.5. The ...)
@@ -7241,9 +7241,9 @@ CVE-2018-7943
 CVE-2018-7942
 	RESERVED
 CVE-2018-7941 (Huawei iBMC V200R002C60 have an authentication bypass vulnerability. A ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2018-7940 (Huawei smart phones Mate 10 and Mate 10 Pro with earlier versions than ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2018-7939
 	RESERVED
 CVE-2018-7938
@@ -7257,7 +7257,7 @@ CVE-2018-7935
 CVE-2018-7934
 	RESERVED
 CVE-2018-7933 (Huawei home gateway products HiRouter-CD20 and WS5200 with the ...)
-	TODO: check
+	NOT-FOR-US: Huawei
 CVE-2018-7932 (Huawei AppGallery versions before 8.0.4.301 has an arbitrary ...)
 	NOT-FOR-US: Huawei
 CVE-2018-7931 (Huawei AppGallery versions before 8.0.4.301 has a whitelist mechanism ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6570e8eefec05d49865bcb275da4c71b95379e85

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6570e8eefec05d49865bcb275da4c71b95379e85
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180510/80117813/attachment.html>

More information about the debian-security-tracker-commits mailing list