[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Oct 1 21:24:01 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aac150dd by Salvatore Bonaccorso at 2018-10-01T20:23:32Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2018-17854 (SIMDComp before 0.1.1 allows remote attackers to cause a denial of ...)
-	TODO: check
+	NOT-FOR-US: SIMDComp
 CVE-2018-17853
 	RESERVED
 CVE-2018-17852 (A SQL injection was discovered in WUZHI CMS 4.1.0 in ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-17851 (An issue was discovered in JsonCpp 1.8.4. An unhandled exception ...)
 	TODO: check
 CVE-2018-17850 (An issue was discovered in JsonCpp 1.8.4. An unhandled exception ...)
@@ -37,25 +37,25 @@ CVE-2018-17837 (An issue was discovered in JTBC(PHP) 3.0.1.6. Arbitrary file del
 CVE-2018-17836 (An issue was discovered in JTBC(PHP) 3.0.1.6. It allows remote ...)
 	TODO: check
 CVE-2018-17835 (An issue was discovered in GetSimple CMS 3.3.15. An administrator can ...)
-	TODO: check
+	NOT-FOR-US: GetSimple CMS
 CVE-2018-17834
 	RESERVED
 CVE-2018-17833
 	RESERVED
 CVE-2018-17832 (XSS exists in WUZHI CMS 2.0 via the index.php v or f parameter. ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-17831 (In REDAXO before 5.6.3, a critical SQL injection vulnerability has been ...)
-	TODO: check
+	NOT-FOR-US: REDAXO
 CVE-2018-17830 (The $args variable in addons/mediapool/pages/index.php in REDAXO 5.6.2 ...)
-	TODO: check
+	NOT-FOR-US: REDAXO
 CVE-2018-17829
 	RESERVED
 CVE-2018-17828 (Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers ...)
 	TODO: check
 CVE-2018-17827 (HisiPHP 1.0.8 allows remote attackers to execute arbitrary PHP code by ...)
-	TODO: check
+	NOT-FOR-US: HisiPHP
 CVE-2018-17826 (HisiPHP 1.0.8 allows CSRF via admin.php/admin/user/adduser.html to add ...)
-	TODO: check
+	NOT-FOR-US: HisiPHP
 CVE-2018-17825 (An issue was discovered in AdPlug 2.3.1. There are several double-free ...)
 	TODO: check
 CVE-2018-17824



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aac150ddb3cf130005e245e4d6335c4c6d5aa71f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aac150ddb3cf130005e245e4d6335c4c6d5aa71f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181001/0433700d/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list