[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Sat Sep 15 10:13:36 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d5fa39ec by Salvatore Bonaccorso at 2018-09-15T09:13:17Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -782,7 +782,7 @@ CVE-2018-16708
 CVE-2018-16707
 	RESERVED
 CVE-2018-16706 (LG SuperSign CMS allows TVs to be rebooted remotely without ...)
-	TODO: check
+	NOT-FOR-US: LG SuperSign CMS
 CVE-2018-16705 (FURUNO FELCOM 250 and 500 devices allow unauthenticated access to the ...)
 	NOT-FOR-US: FURUNO FELCOM 250 and 500 devices
 CVE-2018-16704 (An issue was discovered in Gleez CMS v1.2.0. Because of an Insecure ...)
@@ -1803,11 +1803,11 @@ CVE-2018-16290
 CVE-2018-16289
 	RESERVED
 CVE-2018-16288 (LG SuperSign CMS allows reading of arbitrary files via ...)
-	TODO: check
+	NOT-FOR-US: LG SuperSign CMS
 CVE-2018-16287 (LG SuperSign CMS allows file upload via ...)
-	TODO: check
+	NOT-FOR-US: LG SuperSign CMS
 CVE-2018-16286 (LG SuperSign CMS allows authentication bypass because the CAPTCHA ...)
-	TODO: check
+	NOT-FOR-US: LG SuperSign CMS
 CVE-2018-16285 (The UserPro plugin through 4.9.23 for WordPress allows XSS via the ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2018-16284
@@ -15036,7 +15036,7 @@ CVE-2018-11060 (RSA Archer, versions prior to 6.4.0.1, contain an authorization
 CVE-2018-11059 (RSA Archer, versions prior to 6.4.0.1, contain a stored cross-site ...)
 	NOT-FOR-US: RSA Archer
 CVE-2018-11058 (RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and ...)
-	TODO: check
+	NOT-FOR-US: RSA BSAFE Micro Edition Suite
 CVE-2018-11057 (RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and ...)
 	NOT-FOR-US: RSA BSAFE Micro Edition Suite
 CVE-2018-11056 (RSA BSAFE Micro Edition Suite, prior to 4.1.6.1 (in 4.1.x), and RSA ...)
@@ -15819,7 +15819,7 @@ CVE-2018-10816
 CVE-2018-10815
 	RESERVED
 CVE-2018-10814 (Synametrics SynaMan 4.0 build 1488 uses cleartext password storage for ...)
-	TODO: check
+	NOT-FOR-US: Synametrics SynaMan
 CVE-2018-10813 (In Dedos-web 1.0, the cookie and session secrets used in the ...)
 	NOT-FOR-US: Dedos-web
 CVE-2018-10812 (The Bitpie application through 3.2.4 for Android and iOS uses cleartext ...)
@@ -15988,7 +15988,7 @@ CVE-2018-10765
 CVE-2018-10764
 	RESERVED
 CVE-2018-10763 (Multiple cross-site scripting (XSS) vulnerabilities in Synametrics ...)
-	TODO: check
+	NOT-FOR-US: Synametrics SynaMan
 CVE-2018-10762
 	REJECTED
 CVE-2018-10761



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d5fa39ec0f077564a1a47bab5f8a15d8bc2bc240

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d5fa39ec0f077564a1a47bab5f8a15d8bc2bc240
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180915/c517ca9e/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list