[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Tue Sep 25 21:44:06 BST 2018


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5b3cc4a5 by Moritz Muehlenhoff at 2018-09-25T20:43:49Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -396,7 +396,7 @@ CVE-2018-17340
 CVE-2018-17339
 	RESERVED
 CVE-2018-17338 (An issue has been found in pdfalto through 0.2. It is a heap-based ...)
-	TODO: check
+	NOT-FOR-US: pdfalto
 CVE-2018-17337
 	RESERVED
 CVE-2018-17336 (UDisks 2.8.0 has a format string vulnerability in udisks_log in ...)
@@ -406,11 +406,11 @@ CVE-2018-17336 (UDisks 2.8.0 has a format string vulnerability in udisks_log in
 CVE-2018-17335
 	RESERVED
 CVE-2018-17334 (An issue was discovered in libsvg2 through 2012-10-19. A stack-based ...)
-	TODO: check
+	NOT-FOR-US: libsvg2
 CVE-2018-17333 (An issue was discovered in libsvg2 through 2012-10-19. A stack-based ...)
-	TODO: check
+	NOT-FOR-US: libsvg2
 CVE-2018-17332 (An issue was discovered in libsvg2 through 2012-10-19. The ...)
-	TODO: check
+	NOT-FOR-US: libsvg2
 CVE-2018-17331
 	RESERVED
 CVE-2018-17330
@@ -2868,7 +2868,7 @@ CVE-2018-16301
 CVE-2018-16300
 	RESERVED
 CVE-2018-16299 (The Localize My Post plugin 1.0 for WordPress allows Directory ...)
-	TODO: check
+	NOT-FOR-US: Wordpress plugin
 CVE-2018-16298 (An issue was discovered in MiniCMS 1.10. There is an ...)
 	NOT-FOR-US: MiniCMS
 CVE-2018-16297
@@ -2900,11 +2900,11 @@ CVE-2018-16285 (The UserPro plugin through 4.9.23 for WordPress allows XSS via t
 CVE-2018-16284
 	RESERVED
 CVE-2018-16283 (The Wechat Broadcast plugin 1.2.0 and earlier for WordPress allows ...)
-	TODO: check
+	NOT-FOR-US: Wordpress plugin
 CVE-2018-16282 (A command injection vulnerability in the web server functionality of ...)
 	NOT-FOR-US: Moxa
 CVE-2018-16281 (The DEISER "Profields - Project Custom Fields" app before 6.0.2 for ...)
-	TODO: check
+	NOT-FOR-US: DEISER
 CVE-2018-16280
 	RESERVED
 CVE-2018-16279
@@ -3658,23 +3658,23 @@ CVE-2018-15967 (Adobe Flash Player versions 30.0.0.154 and earlier have a privil
 CVE-2018-15966
 	RESERVED
 CVE-2018-15965 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15964 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15963 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15962 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15961 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15960 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15959 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15958 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15957 (Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2018-15956
 	RESERVED
 CVE-2018-15955
@@ -4533,13 +4533,13 @@ CVE-2018-15617
 CVE-2018-15616
 	RESERVED
 CVE-2018-15615 (A vulnerability in the Supervisor component of Avaya Call Management ...)
-	TODO: check
+	NOT-FOR-US: Avaya
 CVE-2018-15614
 	RESERVED
 CVE-2018-15613 (A cross-site scripting (XSS) vulnerability in the Runtime Config ...)
-	TODO: check
+	NOT-FOR-US: Avaya
 CVE-2018-15612 (A CSRF vulnerability in the Runtime Config component of Avaya Aura ...)
-	TODO: check
+	NOT-FOR-US: Avaya
 CVE-2018-15611
 	RESERVED
 CVE-2018-15610 (A vulnerability in the one-X Portal component of Avaya IP Office ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b3cc4a5508d67d451443b425bd12d6348348380

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b3cc4a5508d67d451443b425bd12d6348348380
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180925/b946c5ec/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list