[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Tue May 15 21:17:25 BST 2018


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
793881e8 by Moritz Muehlenhoff at 2018-05-15T22:17:08+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5,11 +5,11 @@ CVE-2018-11129
 CVE-2018-11128
 	RESERVED
 CVE-2018-11127 (e107 2.1.7 has CSRF resulting in arbitrary user deletion. ...)
-	TODO: check
+	NOT-FOR-US: e107
 CVE-2018-11126 (dg-user/?controller=users&action=add in doorGets 7.0 has CSRF that ...)
-	TODO: check
+	NOT-FOR-US: doorGets
 CVE-2018-11125 (Tencent RapidJSON 1.1.0 has a heap-based buffer over-read in the Peek ...)
-	TODO: check
+	NOT-FOR-US: Tencent RapidJSON
 CVE-2018-11124
 	RESERVED
 CVE-2018-11123
@@ -49,7 +49,7 @@ CVE-2018-11107
 CVE-2018-11106
 	RESERVED
 CVE-2018-11105 (There is stored cross site scripting in the wp-live-chat-support plugin ...)
-	TODO: check
+	NOT-FOR-US: Wordpress plugin
 CVE-2018-11104
 	RESERVED
 CVE-2018-11103
@@ -75,7 +75,7 @@ CVE-2018-11095 (The decompileJUMP function in decompile.c in libming through 0.4
 	- ming <removed>
 	NOTE: https://github.com/libming/libming/issues/141
 CVE-2018-11094 (An issue was discovered on Intelbras NCLOUD 300 1.0 devices. ...)
-	TODO: check
+	NOT-FOR-US: Intelbras NCLOUD
 CVE-2018-11093
 	RESERVED
 CVE-2018-11092
@@ -280,7 +280,7 @@ CVE-2018-10996 (The weblogin_log function in /htdocs/cgibin on D-Link DIR-629-B1
 CVE-2018-10995
 	RESERVED
 CVE-2018-10994 (js/views/message_view.js in Open Whisper Signal (aka Signal-Desktop) ...)
-	TODO: check
+	NOT-FOR-US: Signal-Desktop
 CVE-2018-10993
 	RESERVED
 CVE-2018-10991
@@ -19872,7 +19872,7 @@ CVE-2018-3663
 CVE-2018-3662
 	RESERVED
 CVE-2018-3661 (Buffer overflow in Intel system Configuration utilities selview.exe ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2018-3660
 	RESERVED
 CVE-2018-3659
@@ -19926,7 +19926,7 @@ CVE-2018-3636
 CVE-2018-3635
 	RESERVED
 CVE-2018-3634 (Parameter corruption in NDIS filter driver in Intel Online Connect ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2018-3633
 	RESERVED
 CVE-2018-3632
@@ -19972,7 +19972,7 @@ CVE-2018-3613
 CVE-2018-3612 (Intel NUC kits with insufficient input validation in system firmware, ...)
 	NOT-FOR-US: Intel
 CVE-2018-3611 (Bounds check vulnerability in User Mode Driver in Intel Graphics ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2018-3610 (SEMA driver in Intel Driver and Support Assistant before version 3.1.1 ...)
 	NOT-FOR-US: Intel
 CVE-2017-17968 (A buffer overflow vulnerability in NetTransport.exe in NetTransport ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/793881e8009546035f6bbec34655da053b233c54

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/793881e8009546035f6bbec34655da053b233c54
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180515/b27ac242/attachment.html>


More information about the debian-security-tracker-commits mailing list