[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
jmm at debian.org
Mon Oct 15 17:32:06 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
abed52ad by Moritz Muehlenhoff at 2018-10-15T16:31:40Z
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -44179,7 +44179,7 @@ CVE-2018-1846
CVE-2018-1845
RESERVED
CVE-2018-1844 (IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to a XML ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1843
RESERVED
CVE-2018-1842
@@ -44191,7 +44191,7 @@ CVE-2018-1840
CVE-2018-1839
RESERVED
CVE-2018-1838 (IBM WebSphere Application Server 8.5 and 9.0 in IBM Cloud could allow ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1837
RESERVED
CVE-2018-1836
@@ -44327,7 +44327,7 @@ CVE-2018-1772
CVE-2018-1771
RESERVED
CVE-2018-1770 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1769
RESERVED
CVE-2018-1768 (IBM Spectrum Protect Plus 10.1.0 and 10.1.1 could disclose sensitive ...)
@@ -44377,7 +44377,7 @@ CVE-2018-1747
CVE-2018-1746
RESERVED
CVE-2018-1745 (IBM Security Key Lifecycle Manager 2.7 and 3.0 could allow an ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1744
RESERVED
CVE-2018-1743 (IBM Tivoli Key Lifecycle Manager 2.6, 2.7, and 3.0 discloses sensitive ...)
@@ -44391,7 +44391,7 @@ CVE-2018-1740
CVE-2018-1739
RESERVED
CVE-2018-1738 (IBM Security Key Lifecycle Manager 2.6, 2.7, 3.0 could allow an ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1737
RESERVED
CVE-2018-1736 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could allow a remote ...)
@@ -44419,7 +44419,7 @@ CVE-2018-1726
CVE-2018-1725
RESERVED
CVE-2018-1724 (IBM Spectrum LSF 9.1.1 9.1.2, 9.1.3, and 10.1 could allow a local user ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1723 (IBM Spectrum Scale 4.1.1.0, 4.1.1.20, 4.2.0.0, 4.2.3.10, 5.0.0 and ...)
NOT-FOR-US: IBM
CVE-2018-1722 (IBM Security Access Manager Appliance 9.0.4.0 and 9.0.5.0 could allow ...)
@@ -44451,11 +44451,11 @@ CVE-2018-1710 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server)
CVE-2018-1709
RESERVED
CVE-2018-1708 (IBM Spectrum Symphony 7.1.2 and 7.2.0.2 could allow an authenticated ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1707
RESERVED
CVE-2018-1706 (IBM Spectrum Symphony 7.2.0.2 is vulnerable to cross-site scripting. ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1705 (IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum ...)
NOT-FOR-US: IBM Platform Symphony
CVE-2018-1704 (IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum ...)
@@ -44521,7 +44521,7 @@ CVE-2018-1675
CVE-2018-1674 (IBM Business Process Manager 8.5 through 8.6 and 18.0.0.0 through ...)
NOT-FOR-US: IBM
CVE-2018-1673 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1672 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 may fail to set the ...)
NOT-FOR-US: IBM
CVE-2018-1671
@@ -44799,9 +44799,9 @@ CVE-2018-1536 (IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 th
CVE-2018-1535 (IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 through ...)
NOT-FOR-US: IBM Rational Rhapsody Design Manager
CVE-2018-1534 (IBM Rational Publishing Engine 6.0.5 and 6.0.6 is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1533 (IBM Rational Publishing Engine 6.0.5 and 6.0.6 is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2018-1532 (IBM API Connect 5.0.0.0 through 5.0.8.2 does not properly update the ...)
NOT-FOR-US: IBM API Connect
CVE-2018-1531
@@ -46152,7 +46152,7 @@ CVE-2018-1266 (Cloud Foundry Cloud Controller, versions prior to 1.52.0, contain
CVE-2018-1265 (Cloud Foundry Diego, release versions prior to 2.8.0, does not ...)
NOT-FOR-US: Cloud Foundry
CVE-2018-1264 (Cloud Foundry Log Cache, versions prior to 1.1.1, logs its UAA client ...)
- TODO: check
+ NOT-FOR-US: Cloud Foundry
CVE-2018-1263 (Addresses partial fix in CVE-2018-1261. Pivotal ...)
NOT-FOR-US: Spring-integration-zip
CVE-2018-1262 (Cloud Foundry Foundation UAA, versions 4.12.X and 4.13.X, introduced a ...)
@@ -46237,7 +46237,7 @@ CVE-2018-1225
CVE-2018-1224
REJECTED
CVE-2018-1223 (Cloud Foundry Container Runtime (kubo-release), versions prior to ...)
- TODO: check
+ NOT-FOR-US: Cloud Foundry
CVE-2018-1222
REJECTED
CVE-2018-1221 (In cf-deployment before 1.14.0 and routing-release before 0.172.0, the ...)
@@ -46491,9 +46491,9 @@ CVE-2018-1152 (libjpeg-turbo 1.5.90 is vulnerable to a denial of service ...)
CVE-2018-1151 (The web server on Western Digital TV Media Player 1.03.07 and TV Live ...)
NOT-FOR-US: web server on Western Digital TV Media Player and TV Live Hub
CVE-2018-1150 (NUUO's NVRMini2 3.8.0 and below contains a backdoor that would allow ...)
- TODO: check
+ NOT-FOR-US: NUUO
CVE-2018-1149 (cgi_system in NUUO's NVRMini2 3.8.0 and below allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: NUUO
CVE-2018-1148 (In Nessus before 7.1.0, Session Fixation exists due to insufficient ...)
NOT-FOR-US: Nessus
CVE-2018-1147 (In Nessus before 7.1.0, a XSS vulnerability exists due to improper ...)
@@ -47869,7 +47869,7 @@ CVE-2018-0967 (A denial of service vulnerability exists in the way that Windows
CVE-2018-0966 (A security feature bypass exists when Device Guard incorrectly ...)
NOT-FOR-US: Microsoft
CVE-2018-0965 (A remote code execution vulnerability exists when Windows Hyper-V on a ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-0964 (An information disclosure vulnerability exists when Windows Hyper-V on ...)
NOT-FOR-US: Microsoft
CVE-2018-0963 (An elevation of privilege vulnerability exists in the way that the ...)
@@ -48551,7 +48551,7 @@ CVE-2018-0720
CVE-2018-0719
RESERVED
CVE-2018-0718 (Command injection vulnerability in Music Station 5.1.2 and earlier ...)
- TODO: check
+ NOT-FOR-US: Music Station
CVE-2018-0717
RESERVED
CVE-2018-0716
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/abed52ad9b1daa60bba33f6d15180e977c591da6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/abed52ad9b1daa60bba33f6d15180e977c591da6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181015/6108b6a0/attachment.html>
More information about the debian-security-tracker-commits
mailing list