[Git][security-tracker-team/security-tracker][master] NFUs

Mon, 14 May 2018 05:59:04 -0700 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
68cbb13a by Moritz Muehlenhoff at 2018-05-14T14:57:55+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3,15 +3,15 @@ CVE-2018-11037 (In Exiv2 0.26, the 
Exiv2::PngImage::printStructure function in .
 CVE-2018-11036
        RESERVED
 CVE-2018-11035 (In 2345 Security Guard 3.7, the driver file 
(2345NsProtect.sys, X64 ...)
-       TODO: check
+       NOT-FOR-US: 2345 Security Guard
 CVE-2018-11034 (In 2345 Security Guard 3.7, the driver file 
(2345NsProtect.sys, X64 ...)
-       TODO: check
+       NOT-FOR-US: 2345 Security Guard
 CVE-2018-11033 (The DCTStream::readHuffSym function in Stream.cc in the DCT 
decoder in ...)
        TODO: check
 CVE-2018-11032 (PHPRAP 1.0.4 through 1.0.8 has SQL Injection via the ...)
-       TODO: check
+       NOT-FOR-US: PHPRAP
 CVE-2018-11031 (application/home/controller/debug.php in PHPRAP 1.0.4 through 
1.0.8 has ...)
-       TODO: check
+       NOT-FOR-US: PHPRAP
 CVE-2018-11030
        RESERVED
 CVE-2018-11029
@@ -37,7 +37,7 @@ CVE-2018-11020
 CVE-2018-11019
        RESERVED
 CVE-2018-11018 (An issue was discovered in PbootCMS v1.0.7. Cross-site request 
forgery ...)
-       TODO: check
+       NOT-FOR-US: PbootCMS
 CVE-2018-11017 (The newVar_N function in decompile.c in libming through 0.4.8 
...)
        TODO: check
 CVE-2018-11016
@@ -212,7 +212,7 @@ CVE-2017-18266 (The open_envvar function in xdg-open in 
xdg-utils before 1.1.3 d
 CVE-2018-10945
        RESERVED
 CVE-2018-10944 (The request_dividend function of a smart contract 
implementation for ...)
-       TODO: check
+       NOT-FOR-US: Rasputin Online Coin
 CVE-2018-10943
        RESERVED
 CVE-2018-10942 (modules/attributewizardpro/file_upload.php in the Attribute 
Wizard ...)
@@ -825,7 +825,7 @@ CVE-2018-10680 (** DISPUTED ** Z-BlogPHP 1.5.2 has a stored 
Cross Site Scripting
 CVE-2018-10679
        RESERVED
 CVE-2018-10678 (MyBB 1.8.15, when accessed with Microsoft Edge, mishandles ...)
-       TODO: check
+       NOT-FOR-US: MyBB
 CVE-2018-10677 (The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 
lacks ...)
        NOT-FOR-US: ngiflib
 CVE-2018-10676 (CeNova, Night OWL, Novo, Pulnix, QSee, Securus, and TBK Vision 
DVR ...)
@@ -11412,6 +11412,7 @@ CVE-2017-18154
        RESERVED
 CVE-2017-18153
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2017-18152
        RESERVED
 CVE-2017-18151
@@ -12626,7 +12627,7 @@ CVE-2018-6256
 CVE-2018-6255
        RESERVED
 CVE-2018-6254 (In Android before the 2018-05-05 security patch level, NVIDIA 
Media ...)
-       TODO: check
+       NOT-FOR-US: NVIDIA components for Android
 CVE-2018-6253 (NVIDIA GPU Display Driver contains a vulnerability in the 
DirectX and ...)
        - nvidia-graphics-drivers 390.48-1 (bug #894338)
        [stretch] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
@@ -12660,7 +12661,7 @@ CVE-2018-6248 (NVIDIA Windows GPU Display Driver 
contains a vulnerability in the
 CVE-2018-6247 (NVIDIA Windows GPU Display Driver contains a vulnerability in 
the ...)
        NOT-FOR-US: NVIDIA Windows driver
 CVE-2018-6246 (In Android before the 2018-05-05 security patch level, NVIDIA 
Widevine ...)
-       TODO: check
+       NOT-FOR-US: NVIDIA components for Android
 CVE-2018-6245
        RESERVED
 CVE-2018-6244
@@ -13573,6 +13574,7 @@ CVE-2017-18071 (In Android before security patch level 
2018-04-05 on Qualcomm ..
        NOT-FOR-US: Qualcomm component for Android
 CVE-2017-18070
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2017-18069 (In Android for MSM, Firefox OS for MSM, QRD Android, with all 
Android ...)
        NOT-FOR-US: Qualcomm component for Android
 CVE-2017-18068 (In Android for MSM, Firefox OS for MSM, QRD Android, with all 
Android ...)
@@ -13961,28 +13963,36 @@ CVE-2018-5854
        RESERVED
 CVE-2018-5853
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5852
        RESERVED
 CVE-2018-5851
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5850
        RESERVED
 CVE-2018-5849
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5848
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5847
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5846
        RESERVED
 CVE-2018-5845
        RESERVED
 CVE-2018-5844
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5843
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5842
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-5841
        RESERVED
 CVE-2018-5840
@@ -20340,12 +20350,15 @@ CVE-2018-3583
        RESERVED
 CVE-2018-3582
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-3581
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-3580
        RESERVED
 CVE-2018-3579
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-3578
        RESERVED
 CVE-2018-3577
@@ -20360,8 +20373,10 @@ CVE-2018-3573
        RESERVED
 CVE-2018-3572
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-3571
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2018-3570
        RESERVED
 CVE-2018-3569
@@ -34075,6 +34090,7 @@ CVE-2017-15858
        RESERVED
 CVE-2017-15857
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15856
        RESERVED
 CVE-2017-15855
@@ -34082,6 +34098,7 @@ CVE-2017-15855
        NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15854
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15853 (In Qualcomm Android for MSM, Firefox OS for MSM, and QRD 
Android with ...)
        NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15852 (Information leak of the ISPIF base address in Android for MSM, 
Firefox ...)
@@ -34104,8 +34121,10 @@ CVE-2017-15844
        RESERVED
 CVE-2017-15843
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15842
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15841
        RESERVED
 CVE-2017-15840
@@ -34126,6 +34145,7 @@ CVE-2017-15833 (In Android for MSM, Firefox OS for MSM, 
QRD Android, with all An
        NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15832
        RESERVED
+       NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15831 (In Android for MSM, Firefox OS for MSM, QRD Android, with all 
Android ...)
        NOT-FOR-US: Qualcomm components for Android
 CVE-2017-15830 (In Android for MSM, Firefox OS for MSM, QRD Android, with all 
Android ...)
@@ -41462,20 +41482,28 @@ CVE-2017-13324
        RESERVED
 CVE-2017-13323
        RESERVED
+       NOT-FOR-US: Android
 CVE-2017-13322
        RESERVED
+       NOT-FOR-US: Android
 CVE-2017-13321
        RESERVED
+       NOT-FOR-US: Android
 CVE-2017-13320
        RESERVED
+       NOT-FOR-US: Android Media Framework
 CVE-2017-13319
        RESERVED
+       NOT-FOR-US: Android Media Framework
 CVE-2017-13318
        RESERVED
+       NOT-FOR-US: Android Media Framework
 CVE-2017-13317
        RESERVED
+       NOT-FOR-US: Android Media Framework
 CVE-2017-13316
        RESERVED
+       NOT-FOR-US: Android
 CVE-2017-13315
        RESERVED
 CVE-2017-13314



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/68cbb13af0133719fbbe09f90d4378c6281c521c

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/68cbb13af0133719fbbe09f90d4378c6281c521c
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to