[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Oct 15 21:34:46 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cbba6172 by Salvatore Bonaccorso at 2018-10-15T20:34:18Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,7 +19,7 @@ CVE-2018-18363
 CVE-2018-18362
 	RESERVED
 CVE-2018-18361 (An issue was discovered in nc-cms through 2017-03-10. ...)
-	TODO: check
+	NOT-FOR-US: nc-cms
 CVE-2018-18360
 	RESERVED
 CVE-2018-18359
@@ -227,9 +227,9 @@ CVE-2018-18262
 CVE-2018-18261
 	RESERVED
 CVE-2018-18260 (In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. ...)
-	TODO: check
+	NOT-FOR-US: Camaleon CMS
 CVE-2018-18259 (Stored XSS has been discovered in version 1.0.12 of the LUYA CMS ...)
-	TODO: check
+	NOT-FOR-US: LUYA CMS
 CVE-2018-18258 (An issue was discovered in BageCMS 3.1.3. The attacker can execute ...)
 	NOT-FOR-US: BageCMS
 CVE-2018-18257 (An issue was discovered in BageCMS 3.1.3. An attacker can delete any ...)
@@ -2033,11 +2033,11 @@ CVE-2018-17536 [Persistent XSS merge request project import]
 CVE-2018-17535
 	RESERVED
 CVE-2018-17534 (Teltonika RUT9XX routers with firmware before 00.04.233 provide a root ...)
-	TODO: check
+	NOT-FOR-US: Teltonika RUT9XX routers
 CVE-2018-17533 (Teltonika RUT9XX routers with firmware before 00.05.01.1 are prone to ...)
-	TODO: check
+	NOT-FOR-US: Teltonika RUT9XX routers
 CVE-2018-17532 (Teltonika RUT9XX routers with firmware before 00.04.233 are prone to ...)
-	TODO: check
+	NOT-FOR-US: Teltonika RUT9XX routers
 CVE-2018-17531
 	RESERVED
 CVE-2018-17530
@@ -38188,17 +38188,17 @@ CVE-2018-3999 (An exploitable stack-based buffer overflow vulnerability exists i
 CVE-2018-3998 (An exploitable heap-based buffer overflow vulnerability exists in the ...)
 	TODO: check
 CVE-2018-3997 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit PDF Reader
 CVE-2018-3996 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's PDF Reader
 CVE-2018-3995 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's PDF Reader
 CVE-2018-3994 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's PDF Reader
 CVE-2018-3993 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's PDF Reader
 CVE-2018-3992 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's PDF Reader
 CVE-2018-3991
 	RESERVED
 CVE-2018-3990
@@ -38250,25 +38250,25 @@ CVE-2018-3968
 CVE-2018-3967 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
 	TODO: check
 CVE-2018-3966 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3965 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3964 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3963
 	RESERVED
 CVE-2018-3962 (A use-after-free vulnerability exists in the JavaScript engine of ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3961 (A use-after-free vulnerability exists in the JavaScript engine of ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3960 (A use-after-free vulnerability exists in the JavaScript engine of ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3959 (A use-after-free vulnerability exists in the JavaScript engine of ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3958 (A use-after-free vulnerability exists in the JavaScript engine of ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3957 (A use-after-free vulnerability exists in the JavaScript engine of ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3956
 	RESERVED
 CVE-2018-3955
@@ -38290,19 +38290,19 @@ CVE-2018-3948
 CVE-2018-3947
 	RESERVED
 CVE-2018-3946 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3945 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3944 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3943 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3942 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3941 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3940 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
-	TODO: check
+	NOT-FOR-US: Foxit Software's Foxit PDF Reader
 CVE-2018-3939 (An exploitable use-after-free vulnerability exists in the JavaScript ...)
 	NOT-FOR-US: Foxit
 CVE-2018-3938 (An exploitable stack-based buffer overflow vulnerability exists in the ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cbba6172af5a1ac861f1f0fe492414ef6bd0a121

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cbba6172af5a1ac861f1f0fe492414ef6bd0a121
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181015/6eabc053/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list