Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 2c33351b by Salvatore Bonaccorso at 2018-05-08T22:14:27+02:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -7,13 +7,13 @@ CVE-2018-10811 CVE-2018-10810 RESERVED CVE-2018-10809 (In 2345 Security Guard 3.7, the driver file (2345NetFirewall.sys) ...) - TODO: check + NOT-FOR-US: 2345 Security Guard CVE-2018-10808 RESERVED CVE-2018-10807 RESERVED CVE-2018-10806 (An issue was discovered in Frog CMS 0.9.5. There is a reflected Cross ...) - TODO: check + NOT-FOR-US: Frog CMS CVE-2018-10805 (ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage ...) TODO: check CVE-2018-10804 (ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage ...) @@ -49,7 +49,7 @@ CVE-2018-10798 (A hang issue was discovered in Brave before 0.14.0 (on, for exam CVE-2018-10797 RESERVED CVE-2018-10796 (In 2345 Security Guard 3.7, the driver file (2345NetFirewall.sys) ...) - TODO: check + NOT-FOR-US: 2345 Security Guard CVE-2018-10795 (Liferay 6.2.x and before has an FCKeditor configuration that allows an ...) TODO: check CVE-2018-XXXX [prosody crashed on error handling for stream errors] @@ -204,7 +204,7 @@ CVE-2018-10736 CVE-2018-10735 RESERVED CVE-2018-10734 (KONGTOP DVR devices A303, A403, D303, D305, and D403 contain a ...) - TODO: check + NOT-FOR-US: KONGTOP DVR devices CVE-2018-10733 (There is a heap-based buffer over-read in the function ...) - libgxps <unfixed> (low; bug #897954) [wheezy] - libgxps <ignored> (Minor issue) @@ -24722,7 +24722,7 @@ CVE-2018-1415 (IBM Maximo Asset Management 7.6 is vulnerable to cross-site scrip CVE-2018-1414 (IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL ...) NOT-FOR-US: IBM Maximo Asset Management CVE-2018-1413 (IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This ...) - TODO: check + NOT-FOR-US: IBM Cognos Analytics CVE-2018-1412 RESERVED CVE-2018-1411 (IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) ...) @@ -25193,9 +25193,9 @@ CVE-2017-17542 CVE-2017-17541 RESERVED CVE-2017-17540 (The presence of a hardcoded account in Fortinet FortiWLC 8.3.3 allows ...) - TODO: check + NOT-FOR-US: Fortinet FortiWLC CVE-2017-17539 (The presence of a hardcoded account in Fortinet FortiWLC 7.0.11 and ...) - TODO: check + NOT-FOR-US: Fortinet FortiWLC CVE-2017-17538 (MikroTik v6.40.5 devices allow remote attackers to cause a denial of ...) NOT-FOR-US: MikroTik CVE-2017-17537 (MikroTik RouterBOARD v6.39.2 and v6.40.5 allows an unauthenticated ...) @@ -25854,7 +25854,7 @@ CVE-2018-1241 CVE-2018-1240 (Dell EMC ViPR Controller, versions after 3.0.0.38, contain an ...) NOT-FOR-US: EMC ViPR Controller CVE-2018-1239 (Dell EMC Unity Operating Environment (OE) versions prior to ...) - TODO: check + NOT-FOR-US: EMC Unity Operating Environment CVE-2018-1238 (Dell EMC ScaleIO versions prior to 2.5, contain a command injection ...) NOT-FOR-US: EMC ScaleIO CVE-2018-1237 (Dell EMC ScaleIO versions prior to 2.5, contain improper restriction ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2c33351be1dae98c9fcfa122deb7da7dbf6a36a1 --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2c33351be1dae98c9fcfa122deb7da7dbf6a36a1 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits