[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Nov 2 20:42:10 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2aa41cf5 by Salvatore Bonaccorso at 2018-11-02T20:41:44Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2510,7 +2510,7 @@ CVE-2018-17924
 CVE-2018-17923 (SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to ...)
 	NOT-FOR-US: SAGA1-L8B
 CVE-2018-17922 (Circontrol CirCarLife all versions prior to 4.3.1, the PAP credentials ...)
-	TODO: check
+	NOT-FOR-US: Circontrol CirCarLife
 CVE-2018-17921 (SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to ...)
 	NOT-FOR-US: SAGA1-L8B
 CVE-2018-17920
@@ -2518,7 +2518,7 @@ CVE-2018-17920
 CVE-2018-17919 (All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud ...)
 	NOT-FOR-US: P2P Cloud Server
 CVE-2018-17918 (Circontrol CirCarLife all versions prior to 4.3.1, authentication to ...)
-	TODO: check
+	NOT-FOR-US: Circontrol CirCarLife
 CVE-2018-17917 (All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud ...)
 	NOT-FOR-US: P2P Cloud Server
 CVE-2018-17916 (InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI ...)
@@ -2530,7 +2530,7 @@ CVE-2018-17914 (InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge
 CVE-2018-17913
 	RESERVED
 CVE-2018-17912 (An XXE vulnerability exists in CASE Suite Versions 3.10 and prior when ...)
-	TODO: check
+	NOT-FOR-US: CASE Suite
 CVE-2018-17911 (LAquis SCADA Versions 4.1.0.3870 and prior has several stack-based ...)
 	NOT-FOR-US: LAquis SCADA
 CVE-2018-17910 (WebAccess Versions 8.3.2 and prior. The application fails to properly ...)
@@ -28338,7 +28338,7 @@ CVE-2018-7801
 CVE-2018-7800
 	RESERVED
 CVE-2018-7799 (A DLL hijacking vulnerability exists in Schneider Electric Software ...)
-	TODO: check
+	NOT-FOR-US: Schneider Electric
 CVE-2018-7798 (A Insufficient Verification of Data Authenticity (CWE-345) ...)
 	TODO: check
 CVE-2018-7797
@@ -45868,11 +45868,11 @@ CVE-2018-1880
 CVE-2018-1879
 	RESERVED
 CVE-2018-1878 (IBM Robotic Process Automation with Automation Anywhere 11 could ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1877 (IBM Robotic Process Automation with Automation Anywhere 11 could store ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1876 (IBM Robotic Process Automation with Automation Anywhere 11 could under ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1875
 	RESERVED
 CVE-2018-1874
@@ -45932,7 +45932,7 @@ CVE-2018-1848
 CVE-2018-1847
 	RESERVED
 CVE-2018-1846 (IBM Rational Engineering Lifecycle Manager 5.0 through 5.0.2 and 6.0 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1845
 	RESERVED
 CVE-2018-1844 (IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to a XML ...)
@@ -45954,7 +45954,7 @@ CVE-2018-1837
 CVE-2018-1836
 	RESERVED
 CVE-2018-1835 (IBM Daeja ViewONE Professional, Standard & Virtual 5 is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1834
 	RESERVED
 CVE-2018-1833
@@ -46048,7 +46048,7 @@ CVE-2018-1790
 CVE-2018-1789 (IBM API Connect v2018.1.0 through v2018.3.4 could allow an attacker to ...)
 	NOT-FOR-US: IBM
 CVE-2018-1788 (IBM Spectrum Protect Server 7.1 and 8.1 could disclose highly ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1787
 	RESERVED
 CVE-2018-1786
@@ -46520,7 +46520,7 @@ CVE-2018-1554 (IBM Maximo Asset Management 7.6 is vulnerable to cross-site scrip
 CVE-2018-1553 (IBM WebSphere Application Server Liberty prior to 18.0.0.2 could allow ...)
 	NOT-FOR-US: IBM
 CVE-2018-1552 (IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1551 (IBM WebSphere MQ 8.0.0.2 through 8.0.0.8 and 9.0.0.0 through 9.0.0.3 ...)
 	NOT-FOR-US: IBM
 CVE-2018-1550 (IBM Spectrum Protect 7.1 and 8.1 could allow a local user to corrupt ...)
@@ -98643,7 +98643,7 @@ CVE-2017-1611
 CVE-2017-1610
 	RESERVED
 CVE-2017-1609 (IBM Quality Manager (RQM) 5.0 through 5.0.2 and 6.0 through 6.0.6 are ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2017-1608 (IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle ...)
 	NOT-FOR-US: IBM
 CVE-2017-1607 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2aa41cf54b7e6380cdb941512e24d91d8b0a5eb7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2aa41cf54b7e6380cdb941512e24d91d8b0a5eb7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181102/74c67202/attachment.html>

More information about the debian-security-tracker-commits mailing list