[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Sun May 13 18:16:57 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0bcd75db by Moritz Muehlenhoff at 2018-05-13T19:16:34+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -93,7 +93,7 @@ CVE-2018-10975 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X
 CVE-2018-10974 (In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 ...)
 	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10973 (An integer overflow in the transferMulti function of a smart contract ...)
-	TODO: check
+	NOT-FOR-US: KoreaShow
 CVE-2018-10972 (An issue was discovered in Free Lossless Image Format (FLIF) 0.3. The ...)
 	- flif <unfixed> (bug #898407)
 	NOTE: https://github.com/FLIF-hub/FLIF/issues/503
@@ -460,15 +460,15 @@ CVE-2018-1000301
 CVE-2018-1000300
 	RESERVED
 CVE-2018-1000177 (A cross-site scripting vulnerability exists in Jenkins S3 Plugin ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2018-1000176 (An exposure of sensitive information vulnerability exists in Jenkins ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2018-1000175 (A path traversal vulnerability exists in Jenkins HTML Publisher Plugin ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2018-1000174 (An open redirect vulnerability exists in Jenkins Google Login Plugin ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2018-1000173 (A session fixaction vulnerability exists in Jenkins Google Login ...)
-	TODO: check
+	NOT-FOR-US: Jenkins plugin
 CVE-2018-10802
 	RESERVED
 CVE-2018-10801 (TIFFClientOpen in tif_unix.c in LibTIFF 3.8.2 has memory leaks, as ...)
@@ -707,9 +707,9 @@ CVE-2018-10708
 CVE-2018-10707
 	RESERVED
 CVE-2018-10706 (An integer overflow in the transferMulti function of a smart contract ...)
-	TODO: check
+	NOT-FOR-US: Social Chain
 CVE-2018-10705 (The Owned smart contract implementation for Aurora DAO (AURA), an ...)
-	TODO: check
+	NOT-FOR-US: Aurora DAD
 CVE-2018-10704
 	RESERVED
 CVE-2018-10703



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0bcd75db1cc6e855101a6fd69784c2461c18a675

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0bcd75db1cc6e855101a6fd69784c2461c18a675
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180513/e20647d8/attachment.html>

More information about the debian-security-tracker-commits mailing list