[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Sep 19 21:39:26 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7a25996b by Salvatore Bonaccorso at 2018-09-19T20:38:37Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13,7 +13,7 @@ CVE-2018-17209
 CVE-2018-17208 (Linksys Velop 1.1.2.187020 devices allow unauthenticated command ...)
 	NOT-FOR-US: Linksys Velop
 CVE-2018-17207 (An issue was discovered in Snap Creek Duplicator before 1.2.42. By ...)
-	TODO: check
+	NOT-FOR-US: Snap Creek Duplicator
 CVE-2018-17206 (An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6. The ...)
 	TODO: check
 CVE-2018-17205 (An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, ...)
@@ -1371,7 +1371,7 @@ CVE-2018-16609
 CVE-2018-16608 (In Monstra CMS 3.0.4, an attacker with 'Editor' privileges can change ...)
 	NOT-FOR-US: Monstra CMS
 CVE-2018-16607 (Cross-site scripting (XSS) vulnerability in the Orgs Page in ...)
-	TODO: check
+	NOT-FOR-US: Orgs Page in Open-AudIT Professional
 CVE-2018-16606 (In ProConf before 6.1, an Insecure Direct Object Reference (IDOR) ...)
 	NOT-FOR-US: ProConf
 CVE-2018-16605 (D-Link DIR-600M devices allow XSS via the Hostname and Username fields ...)
@@ -4072,7 +4072,7 @@ CVE-2018-15548
 CVE-2018-15547
 	RESERVED
 CVE-2018-15546 (Accusoft PrizmDoc version 13.3 and earlier contains a Stored ...)
-	TODO: check
+	NOT-FOR-US: Accusoft PrizmDoc
 CVE-2018-15545
 	RESERVED
 CVE-2018-15544
@@ -5669,7 +5669,7 @@ CVE-2018-14794
 CVE-2018-14793 (DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable ...)
 	NOT-FOR-US: DeltaV
 CVE-2018-14792 (WECON PLC Editor version 1.3.3U may allow an attacker to execute code ...)
-	TODO: check
+	NOT-FOR-US: WECON
 CVE-2018-14791 (Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 may ...)
 	NOT-FOR-US: Emerson DeltaV DCS
 CVE-2018-14790
@@ -9207,7 +9207,7 @@ CVE-2018-13400
 CVE-2018-13399
 	RESERVED
 CVE-2018-13398 (The administrative smart-commits resource in Atlassian Fisheye and ...)
-	TODO: check
+	NOT-FOR-US: Atlassian Fisheye and Crucible
 CVE-2018-13397
 	RESERVED
 CVE-2018-13396
@@ -12311,9 +12311,9 @@ CVE-2018-12245
 CVE-2018-12244
 	RESERVED
 CVE-2018-12243 (The Symantec Messaging Gateway product prior to 10.6.6 may be ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2018-12242 (The Symantec Messaging Gateway product prior to 10.6.6 may be ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2018-12241
 	RESERVED
 CVE-2018-12240 (The Norton Identity Safe product prior to 5.3.0.976 may be susceptible ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7a25996b33a8051f9569179baa4b65efeeffbba1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7a25996b33a8051f9569179baa4b65efeeffbba1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180919/a2af5792/attachment.html>

More information about the debian-security-tracker-commits mailing list