[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Thu May 17 17:27:18 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a784c34e by Moritz Muehlenhoff at 2018-05-17T18:26:57+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1097,13 +1097,13 @@ CVE-2018-10740 (Axublog 1.1.0 allows remote Code Execution as demonstrated by in
 CVE-2018-10739 (An issue was discovered in Shanghai 2345 Security Guard 3.7.0. ...)
 	NOT-FOR-US: Shanghai 2345 Security Guard
 CVE-2018-10738 (A SQL injection issue was discovered in Nagios XI before 5.4.13 via the ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-10737 (A SQL injection issue was discovered in Nagios XI before 5.4.13 via the ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-10736 (A SQL injection issue was discovered in Nagios XI before 5.4.13 via the ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-10735 (A SQL injection issue was discovered in Nagios XI before 5.4.13 via the ...)
-	TODO: check
+	NOT-FOR-US: Nagios XI
 CVE-2018-10734 (KONGTOP DVR devices A303, A403, D303, D305, and D403 contain a ...)
 	NOT-FOR-US: KONGTOP DVR devices
 CVE-2018-10733 (There is a heap-based buffer over-read in the function ...)
@@ -2611,7 +2611,7 @@ CVE-2018-10126 (LibTIFF 4.0.9 has a NULL pointer dereference in the jpeg_fdct_16
 CVE-2018-10125
 	RESERVED
 CVE-2018-10123 (p910nd on Inteno IOPSYS 2.0 through 4.2.0 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: p910nd on Inteno IOPSYS
 CVE-2018-10122 (QingDao Nature Easy Soft Chanzhi Enterprise Portal System (aka ...)
 	NOT-FOR-US: QingDao Nature Easy Soft Chanzhi Enterprise Portal System
 CVE-2018-10121 (plugins/box/pages/pages.admin.php in Monstra CMS 3.0.4 has a stored XSS ...)
@@ -16134,7 +16134,7 @@ CVE-2018-5233 (Cross-site scripting (XSS) vulnerability in ...)
 CVE-2018-5232
 	RESERVED
 CVE-2018-5231 (The ForgotLoginDetails resource in Atlassian Jira before version ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2018-5230 (The issue collector in Atlassian Jira before version 7.6.6, from ...)
 	NOT-FOR-US: Atlassian
 CVE-2018-5229
@@ -17321,7 +17321,7 @@ CVE-2018-4852
 CVE-2018-4851
 	RESERVED
 CVE-2018-4850 (A vulnerability has been identified in SIMATIC S7-400 (incl. F) CPU ...)
-	TODO: check
+	NOT-FOR-US: SIMATIC
 CVE-2018-4849 (A vulnerability has been identified in Siveillance VMS Video for ...)
 	NOT-FOR-US: Siveillance VMS Video
 CVE-2018-4848
@@ -30277,17 +30277,17 @@ CVE-2018-0330
 CVE-2018-0329
 	RESERVED
 CVE-2018-0328 (A vulnerability in the web framework of Cisco Unified Communications ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0327 (A vulnerability in the web framework of Cisco Identity Services Engine ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0326 (A vulnerability in the web UI of Cisco TelePresence Server Software ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0325 (A vulnerability in the Session Initiation Protocol (SIP) call-handling ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0324 (A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0323 (A vulnerability in the web management interface of Cisco Enterprise NFV ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0322
 	RESERVED
 CVE-2018-0321
@@ -30339,7 +30339,7 @@ CVE-2018-0299
 CVE-2018-0298
 	RESERVED
 CVE-2018-0297 (A vulnerability in the detection engine of Cisco Firepower Threat ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0296
 	RESERVED
 CVE-2018-0295
@@ -30353,9 +30353,9 @@ CVE-2018-0292
 CVE-2018-0291
 	RESERVED
 CVE-2018-0290 (A vulnerability in the TCP stack of Cisco SocialMiner could allow an ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0289 (A vulnerability in the logs component of Cisco Identity Services Engine ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0288 (A vulnerability in Cisco WebEx Recording Format (WRF) Player could ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0287 (A vulnerability in the Cisco WebEx Network Recording Player for ...)
@@ -30373,13 +30373,13 @@ CVE-2018-0282
 CVE-2018-0281 (A vulnerability in the detection engine of Cisco Firepower System ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0280 (A vulnerability in the Real-Time Transport Protocol (RTP) bitstream ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0279 (A vulnerability in the Secure Copy Protocol (SCP) server of Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0278 (A vulnerability in the management console of Cisco Firepower System ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0277 (A vulnerability in the Extensible Authentication Protocol-Transport ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0276 (A vulnerability in Cisco WebEx Connect IM could allow an ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0275 (A vulnerability in the support tunnel feature of Cisco Identity ...)
@@ -30391,13 +30391,13 @@ CVE-2018-0273 (A vulnerability in the IPsec Manager of Cisco StarOS for Cisco ..
 CVE-2018-0272 (A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0271 (A vulnerability in the API gateway of the Cisco Digital Network ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0270 (A vulnerability in the web-based management interface of Cisco IoT ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0269 (A vulnerability in the web framework of the Cisco Digital Network ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0268 (A vulnerability in the container management subsystem of Cisco Digital ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0267 (A vulnerability in the web framework of Cisco Unified Communications ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0266 (A vulnerability in the web framework of Cisco Unified Communications ...)
@@ -30489,7 +30489,7 @@ CVE-2018-0224 (A vulnerability in the CLI of the Cisco StarOS operating system f
 CVE-2018-0223 (A vulnerability in DesktopServlet in the web-based management interface ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0222 (A vulnerability in Cisco Digital Network Architecture (DNA) Center ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2018-0221 (A vulnerability in specific CLI commands for the Cisco Identity ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0220 (A vulnerability in the web-based management interface of Cisco ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a784c34e4004ae46575fc102aad62a305d2bcc1b

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a784c34e4004ae46575fc102aad62a305d2bcc1b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180517/69444eac/attachment.html>

More information about the debian-security-tracker-commits mailing list