[Git][security-tracker-team/security-tracker][master] Process NFUs

Wed May 16 21:23:32 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0be110d1 by Salvatore Bonaccorso at 2018-05-16T22:23:14+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -12,9 +12,9 @@ CVE-2018-11210 (TinyXML2 6.2.0 has a heap-based buffer over-read in the ...)
 	- tinyxml2 <unfixed>
 	NOTE: https://github.com/leethomason/tinyxml2/issues/675
 CVE-2018-11209 (** DISPUTED ** An issue was discovered in Z-BlogPHP 2.0.0. ...)
-	TODO: check
+	NOT-FOR-US: Z-BlogPHP
 CVE-2018-11208 (** DISPUTED ** An issue was discovered in Z-BlogPHP 2.0.0. There is a ...)
-	TODO: check
+	NOT-FOR-US: Z-BlogPHP
 CVE-2018-11207 (A division by zero was discovered in H5D__chunk_init in H5Dchunk.c in ...)
 	TODO: check
 CVE-2018-11206 (A out of bounds read was discovered in H5O_fill_new_decode and ...)
@@ -850,7 +850,7 @@ CVE-2018-10812 (The Bitpie application through 3.2.4 for Android and iOS uses cl
 CVE-2018-10811
 	RESERVED
 CVE-2018-10810 (chat/mobile/index.php in LiveZilla Live Chat 7.0.9.5 and prior is ...)
-	TODO: check
+	NOT-FOR-US: LiveZilla Live Chat
 CVE-2018-10809 (In 2345 Security Guard 3.7, the driver file (2345NetFirewall.sys) ...)
 	NOT-FOR-US: 2345 Security Guard
 CVE-2018-10808
@@ -1004,9 +1004,9 @@ CVE-2018-10762
 CVE-2018-10761
 	RESERVED
 CVE-2018-10760 (Unrestricted file upload vulnerability in the Files plugin in ...)
-	TODO: check
+	NOT-FOR-US: Files plugin in ProjectPier
 CVE-2018-10759 (PHP remote file inclusion vulnerability in public/patch/patch.php in ...)
-	TODO: check
+	NOT-FOR-US: Project Pier
 CVE-2018-XXXX [Checker config files allow arbitrary code execution scenarios]
 	- vim-syntastic 3.9.0-1 (bug #894736)
 	NOTE: https://github.com/vim-syntastic/syntastic/issues/2170
@@ -2254,9 +2254,9 @@ CVE-2014-10073 (The create_response function in server/server.c in Psensor befor
 	[jessie] - psensor <no-dsa> (Minor issue)
 	NOTE: http://git.wpitchoune.net/gitweb/?p=psensor.git;a=commitdiff;h=8b10426dcc0246c1712a99460dd470dcb1cc4d9c
 CVE-2018-10241 (A denial of service vulnerability in SolarWinds Serv-U before 15.1.6 ...)
-	TODO: check
+	NOT-FOR-US: SolarWinds Serv-U
 CVE-2018-10240 (SolarWinds Serv-U MFT before 15.1.6 HFv1 assigns authenticated users a ...)
-	TODO: check
+	NOT-FOR-US: SolarWinds Serv-U
 CVE-2018-10239
 	RESERVED
 CVE-2018-10238 (bvlc.c in skarg BACnet Protocol Stack 0.8.5 has a buffer overflow in ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0be110d1e0f7c56cdfd45938d93d32d867ca9707

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0be110d1e0f7c56cdfd45938d93d32d867ca9707
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180516/1778541d/attachment-0001.html>
