[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Salvatore Bonaccorso Wed, 11 Jul 2018 13:47:16 -0700

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
06037343 by Salvatore Bonaccorso at 2018-07-11T22:46:31+02:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -31209,25 +31209,25 @@ CVE-2018-2442
 CVE-2018-2441
        RESERVED
 CVE-2018-2440 (Under certain circumstances SAP Dynamic Authorization 
Management (DAM) ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2439 (The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 
7.49, ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2438 (The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 
7.49, ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2437 (The SAP Internet Graphics Service (IGS), 7.20, 7.20EXT, 7.45, 
7.49, ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2436 (Executing transaction WRCK in SAP R/3 Enterprise Retail (EHP6) 
does ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2435 (SAP NetWeaver Enterprise Portal from 7.0 to 7.02, 7.11, 7.20, 
7.30, ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2434 (A content spoofing vulnerability in the following components 
allows to ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2433 (SAP Gateway (SAP KERNEL 32 NUC, SAP KERNEL 32 Unicode, SAP 
KERNEL 64 ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2432 (SAP BusinessObjects Business Intelligence (BI Launchpad and 
Central ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2431 (SAP BusinessObjects Business Intelligence Suite, versions 4.10 
and ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2430
        RESERVED
 CVE-2018-2429
@@ -31235,7 +31235,7 @@ CVE-2018-2429
 CVE-2018-2428 (Under certain conditions SAP UI5 Handler allows an attacker to 
access ...)
        NOT-FOR-US: SAP
 CVE-2018-2427 (SAP BusinessObjects Business Intelligence Suite, versions 4.10 
and ...)
-       TODO: check
+       NOT-FOR-US: SAP
 CVE-2018-2426
        RESERVED
 CVE-2018-2425 (Under certain conditions, SAP Business One, 9.2, 9.3, for SAP 
HANA ...)
@@ -33004,7 +33004,7 @@ CVE-2018-1568
 CVE-2018-1567
        RESERVED
 CVE-2018-1566 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 9.7, ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1565 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 9.7, ...)
        NOT-FOR-US: IBM
 CVE-2018-1564
@@ -33038,7 +33038,7 @@ CVE-2018-1551
 CVE-2018-1550
        RESERVED
 CVE-2018-1549 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 
6.0.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1548 (IBM API Connect 2018.1.0.0, 2018.2.1, 2018.2.2, 2018.2.3, and 
2018.2.4 ...)
        NOT-FOR-US: IBM
 CVE-2018-1547 (IBM Robotic Process Automation with Automation Anywhere 10.0 
could ...)
@@ -33090,11 +33090,11 @@ CVE-2018-1525
 CVE-2018-1524
        RESERVED
 CVE-2018-1523 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 
6.0.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1522
        RESERVED
 CVE-2018-1521 (IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 
6.0.5 are ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1520
        RESERVED
 CVE-2018-1519
@@ -33152,7 +33152,7 @@ CVE-2018-1494 (IBM DOORS Next Generation (DNG/RRC) 5.0 
through 5.0.2 and 6.0 thr
 CVE-2018-1493
        RESERVED
 CVE-2018-1492 (IBM Jazz Foundation products could allow a user with physical 
access ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1491
        RESERVED
 CVE-2018-1490
@@ -33162,7 +33162,7 @@ CVE-2018-1489
 CVE-2018-1488 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 10.5 ...)
        NOT-FOR-US: IBM
 CVE-2018-1487 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 9.7, ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1486
        RESERVED
 CVE-2018-1485
@@ -33220,7 +33220,7 @@ CVE-2018-1460 (IBM Netezza Platform Software (IBM 
PureData System for Analytics 
 CVE-2018-1459 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 9.7, ...)
        NOT-FOR-US: IBM
 CVE-2018-1458 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 9.7, ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1457 (An undisclosed vulnerability in IBM Rational DOORS 9.5.1 
through ...)
        NOT-FOR-US: IBM
 CVE-2018-1456 (IBM Rhapsody DM 5.0 through 5.0.2 and 6.0 through 6.0.5 is 
vulnerable ...)
@@ -33290,7 +33290,7 @@ CVE-2018-1425 (IBM Security Guardium Big Data 
Intelligence (SonarG) 3.1 uses wea
 CVE-2018-1424
        RESERVED
 CVE-2018-1423 (IBM Jazz Foundation products could disclose sensitive 
information to ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1422
        RESERVED
 CVE-2018-1421 (IBM WebSphere DataPower Appliances 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 
and ...)
@@ -33320,9 +33320,9 @@ CVE-2018-1410 (IBM Notes Diagnostics (IBM Client 
Application Access and IBM Note
 CVE-2018-1409 (IBM Notes Diagnostics (IBM Client Application Access and IBM 
Notes) ...)
        NOT-FOR-US: IBM Notes Diagnostics
 CVE-2018-1408 (IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 
6.0.5 are ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1407 (IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 
6.0.5 are ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1406
        RESERVED
 CVE-2018-1405
@@ -33344,7 +33344,7 @@ CVE-2018-1398
 CVE-2018-1397
        RESERVED
 CVE-2018-1396 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 
6.0.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1395
        RESERVED
 CVE-2018-1394
@@ -84663,11 +84663,11 @@ CVE-2017-1795 (IBM WebSphere MQ 7.5, 8.0, and 9.0 
through 9.0.4 could allow a lo
 CVE-2017-1794
        RESERVED
 CVE-2017-1793 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 
6.0.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2017-1792 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 
6.0.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2017-1791 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 
6.0.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2017-1790 (IBM DOORS Next Generation (DNG/RRC) 5.0, 5.0.1, 5.0.2, and 6.0 
through ...)
        NOT-FOR-US: IBM DOORS Next Generation
 CVE-2017-1789 (IBM Tivoli Monitoring V6 6.2.3 and 6.3.0 could allow an ...)
@@ -84773,7 +84773,7 @@ CVE-2017-1740 (IBM Curam Social Program Management 
6.0.5, 6.1.1, 6.2.0, 7.0.1, a
 CVE-2017-1739 (IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, and 
7.0.1 is ...)
        NOT-FOR-US: IBM Curam Social Program Management
 CVE-2017-1738 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 
6.0.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2017-1737
        RESERVED
 CVE-2017-1736
@@ -84791,7 +84791,7 @@ CVE-2017-1731 (IBM WebSphere Application Server 7.0, 
8.0, 8.5, and 9.0 could pro
 CVE-2017-1730
        RESERVED
 CVE-2017-1729 (IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 
6.0.5 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2017-1728
        RESERVED
 CVE-2017-1727 (IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 discloses 
sensitive ...)
@@ -181710,7 +181710,7 @@ CVE-2013-2974 (The BIRT viewer in IBM Tivoli 
Application Dependency Discovery Ma
 CVE-2013-2973
        RESERVED
 CVE-2013-2972 (IBM WebSphere Cast Iron 6.3 allows remote attackers to bypass 
intended ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2013-2971
        RESERVED
 CVE-2013-2970 (Unspecified vulnerability in IBM QRadar Security Information 
and Event ...)
@@ -181752,7 +181752,7 @@ CVE-2013-2953 (IBM InfoSphere Optim Data Growth for 
Oracle E-Business Suite 6.x,
 CVE-2013-2952
        RESERVED
 CVE-2013-2951 (IBM WebSphere Portal 7.0.0.x and 8.0.0.x write passwords to a 
trace ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2013-2950 (CRLF injection vulnerability in IBM WebSphere Portal 6.1.0.x 
before ...)
        NOT-FOR-US: IBM WebSphere
 CVE-2013-2949
@@ -189074,17 +189074,17 @@ CVE-2013-0596 (Cross-site scripting (XSS) 
vulnerability in the Administrative co
 CVE-2013-0595 (Multiple cross-site scripting (XSS) vulnerabilities in iNotes 
8.5.x in ...)
        NOT-FOR-US: IBM Lotus Domino
 CVE-2013-0594 (Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 
6 and ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2013-0593 (Unspecified vulnerability in the olch2x32 ActiveX control in 
IBM SPSS ...)
        NOT-FOR-US: IBM SPSS SamplePower
 CVE-2013-0592 (Cross-site scripting (XSS) vulnerability in IBM iNotes before 
8.5.3 ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2013-0591 (Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM 
Lotus ...)
        NOT-FOR-US: IBM Lotus Domino
 CVE-2013-0590 (Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM 
Lotus ...)
        NOT-FOR-US: IBM Lotus Domino
 CVE-2013-0589 (IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows 
remote ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2013-0588
        RESERVED
 CVE-2013-0587 (Multiple cross-site scripting (XSS) vulnerabilities in IBM 
WebSphere ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/060373431ea0aa66c4255f25bba4c384a74a8d5e

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/060373431ea0aa66c4255f25bba4c384a74a8d5e
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Reply via email to