[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Sat Oct 27 09:46:55 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
22dcf442 by Salvatore Bonaccorso at 2018-10-27T08:41:43Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,7 +7,7 @@ CVE-2018-18696
 CVE-2018-18695
 	RESERVED
 CVE-2018-18694 (admin/index.php?id=filesmanager in Monstra CMS 3.0.4 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Monstra CMS
 CVE-2018-18693
 	RESERVED
 CVE-2018-18692
@@ -78,15 +78,15 @@ CVE-2018-18662 (There is an out-of-bounds read in fz_run_t3_glyph in fitz/font.c
 CVE-2018-18661 (An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer ...)
 	TODO: check
 CVE-2018-18660 (An issue was discovered in Arcserve Unified Data Protection (UDP) ...)
-	TODO: check
+	NOT-FOR-US: Arcserve Unified Data Protection
 CVE-2018-18659 (An issue was discovered in Arcserve Unified Data Protection (UDP) ...)
-	TODO: check
+	NOT-FOR-US: Arcserve Unified Data Protection
 CVE-2018-18658 (An issue was discovered in Arcserve Unified Data Protection (UDP) ...)
-	TODO: check
+	NOT-FOR-US: Arcserve Unified Data Protection
 CVE-2018-18657 (An issue was discovered in Arcserve Unified Data Protection (UDP) ...)
-	TODO: check
+	NOT-FOR-US: Arcserve Unified Data Protection
 CVE-2018-18656 (The PureVPN client before 6.1.0 for Windows stores Login Credentials ...)
-	TODO: check
+	NOT-FOR-US: PureVPN client for Windows
 CVE-2018-18653 (The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI ...)
 	- linux <undetermined>
 	TODO: check, this should be very Ubuntu specific, but it is introduced with the out-of-tree patch from the Lockdown patchset  https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/cosmic/commit/?id=03c7de9e956395f3b36f86f89b62780ad9501eef and so possibly affect our kernel as well in some way.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/22dcf442f0b26fdeeff5067c694fa444cd14b58c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/22dcf442f0b26fdeeff5067c694fa444cd14b58c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181027/41673ccd/attachment.html>

More information about the debian-security-tracker-commits mailing list