[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Sep 7 21:40:23 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
545f28d2 by Salvatore Bonaccorso at 2018-09-07T20:40:03Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2,7 +2,7 @@ CVE-2018-16710 (** DISPUTED ** OctoPrint through 1.3.9 allows remote attackers t
 	- octoprint <itp> (bug #718591)
 	NOTE: https://github.com/foosel/OctoPrint/issues/2814
 CVE-2018-16709 (Fuji Xerox DocuCentre-V 3065, ApeosPort-VI C3371, ApeosPort-V C4475, ...)
-	TODO: check
+	NOT-FOR-US: Fuji Xerox devices
 CVE-2018-16708
 	RESERVED
 CVE-2018-16707
@@ -12,9 +12,9 @@ CVE-2018-16706
 CVE-2018-16705
 	RESERVED
 CVE-2018-16704 (An issue was discovered in Gleez CMS v1.2.0. Because of an Insecure ...)
-	TODO: check
+	NOT-FOR-US: Gleez CMS
 CVE-2018-16703 (A vulnerability in the Gleez CMS 1.2.0 login page could allow an ...)
-	TODO: check
+	NOT-FOR-US: Gleez CMS
 CVE-2018-16702
 	RESERVED
 CVE-2018-16701
@@ -86,15 +86,15 @@ CVE-2018-16669
 CVE-2018-16668
 	RESERVED
 CVE-2018-16667 (An issue was discovered in Contiki-NG through 4.1. There is a buffer ...)
-	TODO: check
+	NOT-FOR-US:  Contiki Operating System
 CVE-2018-16666 (An issue was discovered in Contiki-NG through 4.1. There is a ...)
-	TODO: check
+	NOT-FOR-US:  Contiki Operating System
 CVE-2018-16665 (An issue was discovered in Contiki-NG through 4.1. There is a buffer ...)
-	TODO: check
+	NOT-FOR-US:  Contiki Operating System
 CVE-2018-16664 (An issue was discovered in Contiki-NG through 4.1. There is a buffer ...)
-	TODO: check
+	NOT-FOR-US:  Contiki Operating System
 CVE-2018-16663 (An issue was discovered in Contiki-NG through 4.1. There is a ...)
-	TODO: check
+	NOT-FOR-US:  Contiki Operating System
 CVE-2018-16662
 	RESERVED
 CVE-2018-16661
@@ -27419,7 +27419,7 @@ CVE-2018-6322 (Panda Global Protection 17.0.1 allows local users to gain privile
 CVE-2018-6321 (Unquoted Windows search path vulnerability in the panda_url_filtering ...)
 	NOT-FOR-US: Panda Global Protection
 CVE-2018-6320 (A vulnerability has been discovered in login.cgi in Pulse Secure Pulse ...)
-	TODO: check
+	NOT-FOR-US: Pulse Secure
 CVE-2018-6319 (In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special ...)
 	NOT-FOR-US: Sophos Tester Tool
 CVE-2018-6318 (In Sophos Tester Tool 3.2.0.7 Beta, the driver loads (in the context ...)
@@ -31659,7 +31659,7 @@ CVE-2018-5007 (Adobe Flash Player 30.0.0.113 and earlier versions have a Type ..
 CVE-2018-5006 (Adobe Experience Manager versions 6.4 and earlier have a Server-Side ...)
 	NOT-FOR-US: Adobe
 CVE-2018-5005 (Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a ...)
-	TODO: check
+	NOT-FOR-US: Adobe Experience Manager
 CVE-2018-5004 (Adobe Experience Manager versions 6.2 and 6.3 have a Server-Side ...)
 	NOT-FOR-US: Adobe
 CVE-2018-5003 (Adobe Creative Cloud Desktop Application before 4.5.5.342 (installer) ...)
@@ -40074,7 +40074,7 @@ CVE-2018-1791
 CVE-2018-1790
 	RESERVED
 CVE-2018-1789 (IBM API Connect v2018.1.0 through v2018.3.4 could allow an attacker to ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1788
 	RESERVED
 CVE-2018-1787
@@ -40138,9 +40138,9 @@ CVE-2018-1759
 CVE-2018-1758
 	RESERVED
 CVE-2018-1757 (IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1756 (IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 is ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1755 (IBM WebSphere Application Server Liberty could allow a remote attacker ...)
 	NOT-FOR-US: IBM
 CVE-2018-1754
@@ -40262,7 +40262,7 @@ CVE-2018-1697
 CVE-2018-1696
 	RESERVED
 CVE-2018-1695 (IBM WebSphere Application Server 7.0, 8.0, and 8.5.5 installations ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1694
 	RESERVED
 CVE-2018-1693
@@ -40518,7 +40518,7 @@ CVE-2018-1569
 CVE-2018-1568
 	RESERVED
 CVE-2018-1567 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2018-1566 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
 	NOT-FOR-US: IBM
 CVE-2018-1565 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
@@ -44499,11 +44499,11 @@ CVE-2018-0665
 CVE-2018-0664 (A vulnerability in NoMachine App for Android 5.0.63 and earlier allows ...)
 	NOT-FOR-US: NoMachine App for Android
 CVE-2018-0663 (Multiple I-O DATA network camera products (TS-WRLP firmware ...)
-	TODO: check
+	NOT-FOR-US: I-O DATA network camera products
 CVE-2018-0662 (Multiple I-O DATA network camera products (TS-WRLP firmware ...)
-	TODO: check
+	NOT-FOR-US: I-O DATA network camera products
 CVE-2018-0661 (Multiple I-O DATA network camera products (TS-WRLP firmware ...)
-	TODO: check
+	NOT-FOR-US: I-O DATA network camera products
 CVE-2018-0660 (Directory traversal vulnerability in ver.2.8.4.0 and earlier and ...)
 	TODO: check
 CVE-2018-0659 (Directory traversal vulnerability in ver.2.8.4.0 and earlier and ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/545f28d29aceb794f84c8f8da5d7f847a22b364f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/545f28d29aceb794f84c8f8da5d7f847a22b364f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180907/b2542bdf/attachment.html>

More information about the debian-security-tracker-commits mailing list