[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff Thu, 30 Aug 2018 03:29:30 -0700

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
7e38b81b by Moritz Muehlenhoff at 2018-08-30T10:28:36Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2018-16158 (Eaton Power Xpert Meter 4000, 6000, and 8000 devices before 
13.4.0.10 ...)
-       TODO: check
+       NOT-FOR-US: Eaton Power Xpert Meter
 CVE-2018-16157
        RESERVED
 CVE-2018-16156
@@ -31,9 +31,9 @@ CVE-2018-16144
 CVE-2018-16143
        RESERVED
 CVE-2018-16142 (PHPOK 4.8.278 has a Reflected XSS vulnerability in ...)
-       TODO: check
+       NOT-FOR-US: PHPOK
 CVE-2018-16141 (ThinkCMF X2.2.3 has an arbitrary file deletion vulnerability 
in ...)
-       TODO: check
+       NOT-FOR-US: ThinkCMF
 CVE-2018-16140 (A buffer underwrite vulnerability in get_line() (read.c) in 
fig2dev ...)
        TODO: check
 CVE-2018-16139
@@ -47,11 +47,11 @@ CVE-2018-16136
 CVE-2018-16135
        RESERVED
 CVE-2018-16134 (Cybrotech CyBroHttpServer 1.0.3 allows XSS via a URI. ...)
-       TODO: check
+       NOT-FOR-US: Cybrotech
 CVE-2018-16133 (Cybrotech CyBroHttpServer 1.0.3 allows Directory Traversal via 
a ../ in ...)
-       TODO: check
+       NOT-FOR-US: Cybrotech
 CVE-2018-16132 (The image rendering component (createGenericPreview) of the 
Open ...)
-       TODO: check
+       - signal-desktop <itp> (bug #842943)
 CVE-2018-16131
        RESERVED
 CVE-2018-16130
@@ -87,7 +87,7 @@ CVE-2018-16117
 CVE-2018-16116
        RESERVED
 CVE-2018-16115 (Lightbend Akka 2.5.x before 2.5.16 allows message disclosure 
and ...)
-       TODO: check
+       NOT-FOR-US: Lightbend Akka
 CVE-2018-16114
        RESERVED
 CVE-2018-16113
@@ -7846,7 +7846,7 @@ CVE-2018-12831
 CVE-2018-12830
        RESERVED
 CVE-2018-12829 (Adobe Creative Cloud Desktop Application before 4.6.1 has an 
improper ...)
-       TODO: check
+       NOT-FOR-US: Adobe
 CVE-2018-12828 (Adobe Flash Player 30.0.0.134 and earlier have a &quot;use of 
a component ...)
        NOT-FOR-US: Adobe
 CVE-2018-12827 (Adobe Flash Player 30.0.0.134 and earlier have an 
out-of-bounds read ...)
@@ -9595,7 +9595,7 @@ CVE-2018-12242
 CVE-2018-12241
        RESERVED
 CVE-2018-12240 (The Norton Identity Safe product prior to 5.3.0.976 may be 
susceptible ...)
-       TODO: check
+       NOT-FOR-US: Norton
 CVE-2018-12239
        RESERVED
 CVE-2018-12238
@@ -20961,19 +20961,19 @@ CVE-2018-7797
 CVE-2018-7796
        RESERVED
 CVE-2018-7795 (A Cross Protocol Injection vulnerability exists in Schneider 
...)
-       TODO: check
+       NOT-FOR-US: Schneider
 CVE-2018-7794
        RESERVED
 CVE-2018-7793
        RESERVED
 CVE-2018-7792 (A Permissions, Privileges, and Access Control vulnerability 
exists in ...)
-       TODO: check
+       NOT-FOR-US: Schneider
 CVE-2018-7791 (A Permissions, Privileges, and Access Control vulnerability 
exists in ...)
-       TODO: check
+       NOT-FOR-US: Schneider
 CVE-2018-7790 (An Information Management Error vulnerability exists in 
Schneider ...)
-       TODO: check
+       NOT-FOR-US: Schneider
 CVE-2018-7789 (An Improper Check for Unusual or Exceptional Conditions 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: Schneider
 CVE-2018-7788
        RESERVED
 CVE-2018-7787 (In Schneider Electric U.motion Builder software versions prior 
to ...)
@@ -24817,9 +24817,9 @@ CVE-2018-6601
 CVE-2018-6600
        RESERVED
 CVE-2018-6599 (An issue was discovered on Orbic Wonder ...)
-       TODO: check
+       NOT-FOR-US: Orbic
 CVE-2018-6598 (An issue was discovered on Orbic Wonder ...)
-       TODO: check
+       NOT-FOR-US: Orbic
 CVE-2018-6597 (The Alcatel A30 device with a build fingerprint of ...)
        NOT-FOR-US: Alcatel A30 device
 CVE-2018-6596 (webhooks/base.py in Anymail (aka django-anymail) before 1.2.1 
is prone ...)
@@ -30072,7 +30072,7 @@ CVE-2018-5005
 CVE-2018-5004 (Adobe Experience Manager versions 6.2 and 6.3 have a 
Server-Side ...)
        NOT-FOR-US: Adobe
 CVE-2018-5003 (Adobe Creative Cloud Desktop Application before 4.5.5.342 
(installer) ...)
-       TODO: check
+       NOT-FOR-US: Adobe
 CVE-2018-5002 (Adobe Flash Player versions 29.0.0.171 and earlier have a 
Stack-based ...)
        NOT-FOR-US: Adobe
 CVE-2018-5001 (Adobe Flash Player versions 29.0.0.171 and earlier have an ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/7e38b81b34f8cc6df29fabe13c2d124cb85cbc36

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/7e38b81b34f8cc6df29fabe13c2d124cb85cbc36
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] NFUs

Reply via email to