[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Oct 3 21:20:34 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e23a5c86 by Salvatore Bonaccorso at 2018-10-03T20:20:03Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2018-17969 (Samsung SCX-6545X V2.00.03.01 03-23-2012 devices allows remote ...)
-	TODO: check
+	NOT-FOR-US: Samsung SCX-6545X V2.00.03.01 03-23-2012 devices
 CVE-2018-17968
 	RESERVED
 CVE-2018-17967 (ImageMagick 7.0.7-28 has a memory leak vulnerability in ReadBGRImage in ...)
@@ -64,7 +64,7 @@ CVE-2018-17940
 CVE-2018-17939
 	RESERVED
 CVE-2018-17938 (Zimbra Collaboration before 8.8.10 GA allows text content spoofing via ...)
-	TODO: check
+	NOT-FOR-US: Zimbra
 CVE-2018-17937
 	RESERVED
 CVE-2018-17936
@@ -2016,9 +2016,9 @@ CVE-2018-17056 (Cross-site scripting (XSS) vulnerability in ServiceStack in Prog
 CVE-2018-17055 (An arbitrary file upload vulnerability in Progress Sitefinity CMS ...)
 	NOT-FOR-US: Progress Sitefinity CMS
 CVE-2018-17054 (Cross-site scripting (XSS) vulnerability in Identity Server in ...)
-	TODO: check
+	NOT-FOR-US: Progress Sitefinity CMS
 CVE-2018-17053 (Cross-site scripting (XSS) vulnerability in Identity Server in ...)
-	TODO: check
+	NOT-FOR-US: Progress Sitefinity CMS
 CVE-2018-17052
 	RESERVED
 CVE-2018-17051 (K-Net Cisco Configuration Manager through 2014-11-19 has XSS via ...)
@@ -7305,7 +7305,7 @@ CVE-2018-14828
 CVE-2018-14827 (Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. A ...)
 	NOT-FOR-US: Rockwell Automation RSLinx Classic
 CVE-2018-14826 (Entes EMG12 versions 2.57 and prior The application uses a web ...)
-	TODO: check
+	NOT-FOR-US: Entes EMG12
 CVE-2018-14825 (On Honeywell Mobile Computers (CT60 running Android OS 7.1, CN80 ...)
 	NOT-FOR-US: Honeywell
 CVE-2018-14824 (Delta Electronics Delta Industrial Automation PMSoft v2.11 or prior ...)
@@ -7313,7 +7313,7 @@ CVE-2018-14824 (Delta Electronics Delta Industrial Automation PMSoft v2.11 or pr
 CVE-2018-14823 (Fuji Electric V-Server 4.0.3.0 and prior, A stack-based buffer ...)
 	NOT-FOR-US: Fuji Electric V-Server
 CVE-2018-14822 (Entes EMG12 versions 2.57 and prior an information exposure through ...)
-	TODO: check
+	NOT-FOR-US: Entes EMG12
 CVE-2018-14821 (Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. This ...)
 	NOT-FOR-US: Rockwell Automation RSLinx Classic
 CVE-2018-14820
@@ -7353,15 +7353,15 @@ CVE-2018-14804 (Emerson AMS Device Manager v12.0 to v13.5.  A specially crafted
 CVE-2018-14803 (Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The ...)
 	NOT-FOR-US: Philips e-Alert Unit
 CVE-2018-14802 (Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2018-14801 (In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all ...)
 	NOT-FOR-US: Philips PageWriter
 CVE-2018-14800 (Delta Electronics ISPSoft version 3.0.5 and prior allow an attacker, ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics ISPSoft
 CVE-2018-14799 (In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all ...)
 	NOT-FOR-US: Philips PageWriter
 CVE-2018-14798 (Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2018-14797 (Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 allow a ...)
 	NOT-FOR-US: Emerson DeltaV DCS
 CVE-2018-14796 (Tec4Data SmartCooler, all versions prior to firmware 180806, the ...)
@@ -7369,7 +7369,7 @@ CVE-2018-14796 (Tec4Data SmartCooler, all versions prior to firmware 180806, the
 CVE-2018-14795 (DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable ...)
 	NOT-FOR-US: DeltaV
 CVE-2018-14794 (Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. The device ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2018-14793 (DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable ...)
 	NOT-FOR-US: DeltaV
 CVE-2018-14792 (WECON PLC Editor version 1.3.3U may allow an attacker to execute code ...)
@@ -7377,11 +7377,11 @@ CVE-2018-14792 (WECON PLC Editor version 1.3.3U may allow an attacker to execute
 CVE-2018-14791 (Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 may ...)
 	NOT-FOR-US: Emerson DeltaV DCS
 CVE-2018-14790 (Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2018-14789 (In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version ...)
 	NOT-FOR-US: Philips
 CVE-2018-14788 (Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. A buffer ...)
-	TODO: check
+	NOT-FOR-US: Fuji Electric
 CVE-2018-14787 (In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version ...)
 	NOT-FOR-US: Philips
 CVE-2018-14786 (Becton, Dickinson and Company (BD) Alaris Plus medical syringe pumps ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e23a5c8625bf0cbaf667c8352deba7bb89424cab

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e23a5c8625bf0cbaf667c8352deba7bb89424cab
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181003/7fbc402a/attachment.html>

More information about the debian-security-tracker-commits mailing list