[Git][security-tracker-team/security-tracker][master] 2 commits: NFUs

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b110200c by Moritz Muehlenhoff at 2018-10-11T08:26:14Z
NFUs

- - - - -
a5e68bbf by Moritz Muehlenhoff at 2018-10-11T08:30:26Z
Merge branch 'master' of salsa.debian.org:security-tracker-team/security-tracker

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2018-18241
 	RESERVED
 CVE-2018-18240 (Pippo through 1.11.0 allows remote code execution via a command to ...)
-	TODO: check
+	NOT-FOR-US: Pippo
 CVE-2018-18239
 	RESERVED
 CVE-2018-18238
@@ -107,7 +107,7 @@ CVE-2018-18192 (An issue was discovered in libgig 4.1.0. There is a NULL pointer
 CVE-2018-18191 (Cross-site request forgery (CSRF) vulnerability in ...)
 	NOT-FOR-US: FineCms
 CVE-2018-18190 (An issue was discovered in GoPro gpmf-parser before 1.2.1. There is a ...)
-	TODO: check
+	NOT-FOR-US: GoPro gpmf-parser
 CVE-2018-18189
 	RESERVED
 CVE-2018-18188
@@ -384,9 +384,9 @@ CVE-2018-18064 (cairo through 1.15.14 has an out-of-bounds stack-memory write du
 CVE-2018-18063
 	RESERVED
 CVE-2018-18062 (An issue was discovered in dialog.php in tecrail Responsive ...)
-	TODO: check
+	NOT-FOR-US: tecrail Responsive FileManager
 CVE-2018-18061 (An issue was discovered in dialog.php in tecrail Responsive ...)
-	TODO: check
+	NOT-FOR-US: tecrail Responsive FileManager
 CVE-2018-18060
 	RESERVED
 CVE-2018-18059
@@ -737,7 +737,7 @@ CVE-2018-17927
 CVE-2018-17926
 	RESERVED
 CVE-2018-17925 (Multiple instances of this vulnerability (Unsafe ActiveX Control ...)
-	TODO: check
+	NOT-FOR-US: Gigasoft
 CVE-2018-17924
 	RESERVED
 CVE-2018-17923
@@ -1056,7 +1056,7 @@ CVE-2018-17786 (On D-Link DIR-823G devices, ExportSettings.sh, upload_settings.c
 CVE-2018-17785 (In blynk-server in Blynk before 0.39.7, Directory Traversal exists via ...)
 	NOT-FOR-US: blynk-server in Blynk
 CVE-2018-17784 (Multiple vulnerabilities in YUI and FlashCanvas embedded in SugarCRM ...)
-	TODO: check
+	NOT-FOR-US: SugarCRM
 CVE-2018-17783
 	RESERVED
 CVE-2018-17782
@@ -2012,7 +2012,7 @@ CVE-2018-17339
 CVE-2018-17338 (An issue has been found in pdfalto through 0.2. It is a heap-based ...)
 	NOT-FOR-US: pdfalto
 CVE-2018-17337 (Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is ...)
-	TODO: check
+	NOT-FOR-US: Intelbras NPLUG
 CVE-2018-17336 (UDisks 2.8.0 has a format string vulnerability in udisks_log in ...)
 	- udisks2 2.8.1-1 (bug #909607)
 	[stretch] - udisks2 <not-affected> (Vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ec6e57e298da8b7e59421759a9fc678588671cd9...a5e68bbfc951e9c22e1f3fa1a1fd81fd3a585be7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ec6e57e298da8b7e59421759a9fc678588671cd9...a5e68bbfc951e9c22e1f3fa1a1fd81fd3a585be7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181011/99004b82/attachment.html>