[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso Wed, 11 Jul 2018 13:24:57 -0700

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
1e1a7162 by Salvatore Bonaccorso at 2018-07-11T22:24:17+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -9,7 +9,7 @@ CVE-2018-13991
 CVE-2018-13990
        RESERVED
 CVE-2018-13989 (Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks 
via a POST ...)
-       TODO: check
+       NOT-FOR-US: Grundig Smart Inter@ctive TV 3.0 devices
 CVE-2018-13988
        RESERVED
 CVE-2018-13987
@@ -8360,11 +8360,11 @@ CVE-2018-10637
 CVE-2018-10636
        RESERVED
 CVE-2018-10635 (In Universal Robots Robot Controllers Version CB 3.1, SW 
Version ...)
-       TODO: check
+       NOT-FOR-US: Universal Robots
 CVE-2018-10634
        RESERVED
 CVE-2018-10633 (Universal Robots Robot Controllers Version CB 3.1, SW Version 
...)
-       TODO: check
+       NOT-FOR-US: Universal Robots
 CVE-2018-10632
        RESERVED
 CVE-2018-10631
@@ -9346,9 +9346,9 @@ CVE-2018-10234 (Authenticated Cross site Scripting exists 
in the User Profile &a
 CVE-2018-10233 (The User Profile &amp; Membership plugin before 2.0.7 for 
WordPress has no ...)
        NOT-FOR-US: User Profile & Membership plugin for WordPress
 CVE-2018-10232 (Cross-site request forgery (CSRF) vulnerability in TOPdesk 
before ...)
-       TODO: check
+       NOT-FOR-US: TOPdesk
 CVE-2018-10231 (Cross-site scripting (XSS) vulnerability in TOPdesk before 
8.05.017 ...)
-       TODO: check
+       NOT-FOR-US: TOPdesk
 CVE-2018-10230 (Zend Debugger in Zend Server before 9.1.3 has XSS, aka 
ZSR-2455. ...)
        NOT-FOR-US: Zend Server
 CVE-2018-10229 (A hardware vulnerability in GPU memory modules allows 
attackers to ...)
@@ -14052,15 +14052,15 @@ CVE-2018-8329
 CVE-2018-8328
        RESERVED
 CVE-2018-8327 (A remote code execution vulnerability exists in PowerShell 
Editor ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8326 (A cross-site-scripting (XSS) vulnerability exists when an open 
source ...)
        TODO: check
 CVE-2018-8325 (An information disclosure vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8324 (An information disclosure vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8323 (An elevation of privilege vulnerability exists when Microsoft 
...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8322
        RESERVED
 CVE-2018-8321
@@ -14078,43 +14078,43 @@ CVE-2018-8316
 CVE-2018-8315
        RESERVED
 CVE-2018-8314 (An elevation of privilege vulnerability exists when Windows 
fails a ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8313 (An elevation of privilege vulnerability exists in the way that 
the ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8312 (A remote code execution vulnerability exists when Microsoft 
Access ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8311 (A remote code execution vulnerability exists when Skype for 
Business ...)
        TODO: check
 CVE-2018-8310 (A tampering vulnerability exists when Microsoft Outlook does 
not ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8309 (A denial of service vulnerability exists when Windows 
improperly ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8308 (An elevation of privilege vulnerability exists when the Windows 
kernel ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8307 (A security feature bypass vulnerability exists when Microsoft 
WordPad ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8306 (A command injection vulnerability exists in the Microsoft 
Wireless ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8305 (An information disclosure vulnerability exists in Windows Mail 
Client ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8304 (A denial of service vulnerability exists in Windows Domain Name 
System ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8303
        RESERVED
 CVE-2018-8302
        RESERVED
 CVE-2018-8301 (A remote code execution vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8300 (A remote code execution vulnerability exists in Microsoft 
SharePoint ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8299 (An elevation of privilege vulnerability exists when Microsoft 
...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8298 (A remote code execution vulnerability exists in the way that 
the ...)
        TODO: check
 CVE-2018-8297 (An information disclosure vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8296 (A remote code execution vulnerability exists in the way that 
the ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8295
        RESERVED
 CVE-2018-8294 (A remote code execution vulnerability exists in the way that 
the ...)
@@ -14124,15 +14124,15 @@ CVE-2018-8293
 CVE-2018-8292
        RESERVED
 CVE-2018-8291 (A remote code execution vulnerability exists in the way the 
scripting ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8290 (A remote code execution vulnerability exists in the way that 
the ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8289 (An information disclosure vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8288 (A remote code execution vulnerability exists in the way the 
scripting ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8287 (A remote code execution vulnerability exists in the way the 
scripting ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8286 (A remote code execution vulnerability exists in the way that 
the ...)
        TODO: check
 CVE-2018-8285
@@ -14142,23 +14142,23 @@ CVE-2018-8284 (A remote code execution vulnerability 
exists when the Microsoft .
 CVE-2018-8283 (A remote code execution vulnerability exists in the way that 
the ...)
        TODO: check
 CVE-2018-8282 (An elevation of privilege vulnerability exists in Windows when 
the ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8281 (A remote code execution vulnerability exists in Microsoft 
Office ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8280 (A remote code execution vulnerability exists in the way that 
the ...)
        TODO: check
 CVE-2018-8279 (A remote code execution vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8278 (A spoofing vulnerability exists when Microsoft Edge improperly 
handles ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8277
        RESERVED
 CVE-2018-8276 (A security feature bypass vulnerability exists in the Microsoft 
Chakra ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8275 (A remote code execution vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8274 (A remote code execution vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8273
        RESERVED
 CVE-2018-8272
@@ -14182,7 +14182,7 @@ CVE-2018-8264
 CVE-2018-8263
        RESERVED
 CVE-2018-8262 (A remote code execution vulnerability exists when Microsoft 
Edge ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8261
        RESERVED
 CVE-2018-8260 (A Remote Code Execution vulnerability exists in .NET software 
when the ...)
@@ -14242,7 +14242,7 @@ CVE-2018-8234 (An information disclosure vulnerability 
exists when Microsoft Edg
 CVE-2018-8233 (An elevation of privilege vulnerability exists in Windows when 
the ...)
        NOT-FOR-US: Microsoft
 CVE-2018-8232 (A Tampering vulnerability exists when Microsoft Macro Assembler 
...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8231 (A remote code execution vulnerability exists when HTTP Protocol 
Stack ...)
        NOT-FOR-US: Microsoft
 CVE-2018-8230
@@ -14262,7 +14262,7 @@ CVE-2018-8224 (An elevation of privilege vulnerability 
exists when the Windows k
 CVE-2018-8223
        RESERVED
 CVE-2018-8222 (A security feature bypass vulnerability exists in Device Guard 
that ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8221 (A security feature bypass vulnerability exists in Device Guard 
that ...)
        NOT-FOR-US: Microsoft
 CVE-2018-8220
@@ -14294,7 +14294,7 @@ CVE-2018-8208 (An elevation of privilege vulnerability 
exists in Windows when De
 CVE-2018-8207 (An information disclosure vulnerability exists when the Windows 
kernel ...)
        NOT-FOR-US: Microsoft
 CVE-2018-8206 (A denial of service vulnerability exists when Windows 
improperly ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8205 (A denial of service vulnerability exists when Windows 
improperly ...)
        NOT-FOR-US: Microsoft
 CVE-2018-8204
@@ -14362,7 +14362,7 @@ CVE-2018-8174 (A remote code execution vulnerability 
exists in the way that the 
 CVE-2018-8173 (A remote code execution vulnerability exists in Microsoft 
InfoPath ...)
        NOT-FOR-US: Microsoft
 CVE-2018-8172 (A remote code execution vulnerability exists in Visual Studio 
software ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-8171 (A Security Feature Bypass vulnerability exists in ASP.NET when 
the ...)
        TODO: check
 CVE-2018-8170 (An elevation of privilege vulnerability exists in the way that 
the ...)
@@ -18080,11 +18080,11 @@ CVE-2018-6969
 CVE-2018-6968 (The VMware AirWatch Agent for Android prior to 8.2 and AirWatch 
Agent ...)
        NOT-FOR-US: VMware AirWatch Agent
 CVE-2018-6967 (VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation 
(14.x ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2018-6966 (VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation 
(14.x ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2018-6965 (VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation 
(14.x ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2018-6964 (VMware Horizon Client for Linux (4.x before 4.8.0 and prior) 
contains ...)
        NOT-FOR-US: VMware
 CVE-2018-6963 (VMware Workstation (14.x before 14.1.2) and Fusion (10.x before 
...)
@@ -22661,7 +22661,7 @@ CVE-2018-5555
 CVE-2018-5554
        RESERVED
 CVE-2018-5553 (The Crestron Console service running on DGE-100, DM-DGE-200-C, 
and ...)
-       TODO: check
+       NOT-FOR-US: Crestron Console service running on DGE-100, DM-DGE-200-C, 
and TS-1542-C devices
 CVE-2018-5552 (Versions of DocuTrac QuicDoc and Office Therapy that ship with 
...)
        NOT-FOR-US: DocuTrac QuicDoc and Office Therapy
 CVE-2018-5551 (Versions of DocuTrac QuicDoc and Office Therapy that ship with 
...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1e1a71629ceb13f3bd76b5370b7059636995aa65

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1e1a71629ceb13f3bd76b5370b7059636995aa65
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to