Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5ba90523 by Moritz Muehlenhoff at 2018-05-04T23:33:45+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,13 +1,13 @@
CVE-2018-10750 (An issue was discovered on D-Link DSL-3782 EU 1.01 devices. An
...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2018-10749 (An issue was discovered on D-Link DSL-3782 EU 1.01 devices. An
...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2018-10748 (An issue was discovered on D-Link DSL-3782 EU 1.01 devices. An
...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2018-10747 (An issue was discovered on D-Link DSL-3782 EU 1.01 devices. An
...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2018-10746 (An issue was discovered on D-Link DSL-3782 EU 1.01 devices. An
...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2018-10745
RESERVED
CVE-2018-10744
@@ -19,9 +19,9 @@ CVE-2018-10742
CVE-2018-10741
RESERVED
CVE-2018-10740 (Axublog 1.1.0 allows remote Code Execution as demonstrated by
injection ...)
- TODO: check
+ NOT-FOR-US: Axublog
CVE-2018-10739 (An issue was discovered in Shanghai 2345 Security Guard 3.7.0.
...)
- TODO: check
+ NOT-FOR-US: Shanghai 2345 Security Guard
CVE-2018-10738
RESERVED
CVE-2018-10737
@@ -47,7 +47,7 @@ CVE-2018-10728
CVE-2018-10727
RESERVED
CVE-2018-10726 (** DISPUTED ** A stored XSS vulnerability was found in
Datenstrom ...)
- TODO: check
+ NOT-FOR-US: Datenstrom Yellow
CVE-2018-10725
RESERVED
CVE-2018-10724
@@ -3969,7 +3969,7 @@ CVE-2018-9065
CVE-2018-9064
RESERVED
CVE-2018-9063 (MapDrv (C:\Program Files\Lenovo\System Update\mapdrv.exe) In
Lenovo ...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2018-9062
RESERVED
CVE-2018-9061
@@ -4495,13 +4495,13 @@ CVE-2018-8874 (In 2345 Security Guard 3.6, the driver
file (2345Wrath.sys) allow
CVE-2018-8873 (In 2345 Security Guard 3.6, the driver file
(2345NetFirewall.sys) ...)
NOT-FOR-US: 2345 Security Guard
CVE-2018-8872 (In Schneider Electric Triconex Tricon MP model 3008 firmware
versions ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2018-8871
RESERVED
CVE-2018-8870
RESERVED
CVE-2018-8869 (In Lantech IDS 2102 2.0 and prior, nearly all input fields
allow for ...)
- TODO: check
+ NOT-FOR-US: Lantech
CVE-2018-8868
RESERVED
CVE-2018-8867
@@ -4509,7 +4509,7 @@ CVE-2018-8867
CVE-2018-8866
RESERVED
CVE-2018-8865 (In Lantech IDS 2102 2.0 and prior, a stack-based buffer
overflow ...)
- TODO: check
+ NOT-FOR-US: Lantech
CVE-2018-8864
RESERVED
CVE-2018-8863
@@ -4517,7 +4517,7 @@ CVE-2018-8863
CVE-2018-8862
RESERVED
CVE-2018-8861 (Vulnerabilities within the Philips Brilliance CT kiosk
environment ...)
- TODO: check
+ NOT-FOR-US: Philips Brilliance
CVE-2018-8860
RESERVED
CVE-2018-8859
@@ -4525,7 +4525,7 @@ CVE-2018-8859
CVE-2018-8858
RESERVED
CVE-2018-8857 (Philips Brilliance CT software (Brilliance 64 version 2.6.2 and
prior, ...)
- TODO: check
+ NOT-FOR-US: Philips Brilliance
CVE-2018-8856
RESERVED
CVE-2018-8855
@@ -4533,7 +4533,7 @@ CVE-2018-8855
CVE-2018-8854
RESERVED
CVE-2018-8853 (Philips Brilliance CT devices operate user functions from
within a ...)
- TODO: check
+ NOT-FOR-US: Philips Brilliance
CVE-2018-8852
RESERVED
CVE-2018-8851
@@ -7972,7 +7972,7 @@ CVE-2018-7524 (A cross-site request forgery vulnerability
has been identified in
CVE-2018-7523 (In Omron CX-Supervisor Versions 3.30 and prior, parsing
malformed ...)
NOT-FOR-US: Omron CX-Supervisor
CVE-2018-7522 (In Schneider Electric Triconex Tricon MP model 3008 firmware
versions ...)
- TODO: check
+ NOT-FOR-US: Schneider
CVE-2018-7521 (In Omron CX-Supervisor Versions 3.30 and prior, use after free
...)
NOT-FOR-US: Omron CX-Supervisor
CVE-2018-7520 (An improper access control vulnerability has been identified in
...)
@@ -7998,11 +7998,11 @@ CVE-2018-7511 (In Eaton ELCSoft versions 2.04.02 and
prior, there are multiple c
CVE-2018-7510
RESERVED
CVE-2018-7509 (WPLSoft in Delta Electronics versions 2.45.0 and prior writes
data ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics
CVE-2018-7508 (A Cross-site Scripting issue was discovered in OSIsoft PI Web
API ...)
NOT-FOR-US: OSIsoft PI
CVE-2018-7507 (WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes
a ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics
CVE-2018-7506 (The private key of the web server in Moxa MXview versions 2.8
and ...)
NOT-FOR-US: Moxa
CVE-2018-7505
@@ -8028,7 +8028,7 @@ CVE-2018-7496 (An Information Exposure issue was
discovered in OSIsoft PI Vision
CVE-2018-7495
RESERVED
CVE-2018-7494 (WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes
a ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics
CVE-2018-7493 (CactusVPN through 6.0 for macOS suffers from a root privilege
...)
NOT-FOR-US: CactusVPN for macOS
CVE-2017-18204 (The ocfs2_setattr function in fs/ocfs2/file.c in the Linux
kernel ...)
@@ -14297,11 +14297,11 @@ CVE-2018-5450
CVE-2018-5449 (A NULL Pointer Dereference issue was discovered in Moxa OnCell
...)
NOT-FOR-US: Moxa
CVE-2018-5448 (All versions of the Medtronic 2090 Carelink Programmer are
affected by ...)
- TODO: check
+ NOT-FOR-US: Medtronic
CVE-2018-5447 (An Improper Input Validation issue was discovered in Nari
PCS-9611 ...)
NOT-FOR-US: Nari PCS-9611 relay
CVE-2018-5446 (All versions of the Medtronic 2090 Carelink Programmer are
affected by ...)
- TODO: check
+ NOT-FOR-US: Medtronic
CVE-2018-5445 (A Path Traversal issue was discovered in Advantech
WebAccess/SCADA ...)
NOT-FOR-US: Advantech WebAccess/SCADA
CVE-2018-5444
@@ -65116,9 +65116,9 @@ CVE-2017-5540
CVE-2017-5539 (The patch for directory traversal (CVE-2017-5480) in
b2evolution ...)
- b2evolution <removed>
CVE-2017-5536 (The GridServer Broker, and GridServer Director components of
TIBCO ...)
- TODO: check
+ NOT-FOR-US: TIBCO GridServer
CVE-2017-5535 (The GridServer Broker, GridServer Driver, and GridServer Engine
...)
- TODO: check
+ NOT-FOR-US: TIBCO GridServer
CVE-2017-5534 (The tibbr user profiles components of tibbr Community, and
tibbr ...)
NOT-FOR-US: tibbr
CVE-2017-5533 (A vulnerability in the server content cache of TIBCO
JasperReports ...)
@@ -70090,7 +70090,7 @@ CVE-2017-3777
CVE-2017-3776 (Lenovo Help Android mobile app versions earlier than 6.1.2.0327
...)
NOT-FOR-US: Lenovo Help Android mobile app
CVE-2017-3775 (Some Lenovo System x server BIOS/UEFI versions, when Secure
Boot mode ...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2017-3774 (A stack overflow vulnerability was discovered within the web
...)
NOT-FOR-US: IBM
CVE-2017-3773
@@ -75928,7 +75928,7 @@ CVE-2017-1745
CVE-2017-1744
RESERVED
CVE-2017-1743 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could
allow a ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2017-1742
RESERVED
CVE-2017-1741 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could
allow a ...)
@@ -164508,7 +164508,7 @@ CVE-2013-6274
CVE-2013-6273
RESERVED
CVE-2013-6272 (The NotificationBroadcastReceiver class in the
com.android.phone ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2013-6271 (Android 4.0 through 4.3 allows attackers to bypass intended
access ...)
NOT-FOR-US: Android
CVE-2013-6270
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/5ba90523018066bd98a5aac611c73f5aae4745ce
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/5ba90523018066bd98a5aac611c73f5aae4745ce
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
