[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Oct 30 08:31:15 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6c60715c by Salvatore Bonaccorso at 2018-10-30T08:30:43Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11,11 +11,11 @@ CVE-2018-18844
 CVE-2018-18843
 	RESERVED
 CVE-2018-18842 (CSRF exists in zb_users/plugin/AppCentre/theme.js.php in Z-BlogPHP ...)
-	TODO: check
+	NOT-FOR-US: Z-BlogPHP
 CVE-2018-18841 (XSS was discovered in SEMCMS PHP V3.4 via the ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS PHP
 CVE-2018-18840 (XSS was discovered in SEMCMS PHP V3.4 via the ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS PHP
 CVE-2018-18839
 	RESERVED
 CVE-2018-18838
@@ -25,17 +25,17 @@ CVE-2018-18837
 CVE-2018-18836
 	RESERVED
 CVE-2018-18835 (upload_template() in system/changeskin.php in DocCms 2016.5.12 allows ...)
-	TODO: check
+	NOT-FOR-US: DocCms
 CVE-2018-18834 (An issue has been found in libIEC61850 v1.3. It is a heap-based buffer ...)
 	TODO: check
 CVE-2018-18833
 	RESERVED
 CVE-2018-18832 (admin/check.asp in DKCMS 9.4 allows SQL Injection via an ASPSESSIONID ...)
-	TODO: check
+	NOT-FOR-US: DKCMS
 CVE-2018-18831 (An issue was discovered in com\mingsoft\cms\action\GeneraterAction.java ...)
-	TODO: check
+	NOT-FOR-US: MCMS
 CVE-2018-18830 (An issue was discovered in ...)
-	TODO: check
+	NOT-FOR-US: MCMS
 CVE-2018-18829 (There exists a NULL pointer dereference in ...)
 	TODO: check
 CVE-2018-18828 (There exists a heap-based buffer overflow in vc1_decode_i_block_adv in ...)
@@ -45,13 +45,13 @@ CVE-2018-18827 (There exists a heap-based buffer over-read in ff_vc1_pred_dc in
 CVE-2018-18826 (There exists a heap-based buffer overflow in vc1_decode_p_mb_intfi in ...)
 	TODO: check
 CVE-2018-18825 (Pagoda Linux panel V6.0 has XSS via the verification code associated ...)
-	TODO: check
+	NOT-FOR-US: Pagoda Linux panel
 CVE-2018-18824
 	RESERVED
 CVE-2018-18823
 	RESERVED
 CVE-2018-18822 (Grapixel New Media v2.0 allows SQL Injection via the pages.aspx pageref ...)
-	TODO: check
+	NOT-FOR-US: Grapixel New Media
 CVE-2018-18821
 	RESERVED
 CVE-2018-18820
@@ -61,7 +61,7 @@ CVE-2018-18819
 CVE-2018-18818
 	RESERVED
 CVE-2018-18817 (The Leostream Agent before Build 7.0.1.0 when used with Leostream ...)
-	TODO: check
+	NOT-FOR-US: Leostream Agent
 CVE-2018-18816
 	RESERVED
 CVE-2018-18815



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6c60715cf34417eb2f7fadab67b5e35d4ed816c3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6c60715cf34417eb2f7fadab67b5e35d4ed816c3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181030/9591ee63/attachment.html>

More information about the debian-security-tracker-commits mailing list