Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8d6bcb4b by Moritz Muehlenhoff at 2018-09-13T10:03:43Z
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6,7 +6,7 @@ CVE-2018-16982 (Open Chinese Convert (OpenCC) 1.0.5 allows
attackers to cause a
CVE-2018-16981 (stb stb_image.h 2.19, as used in catimg, Emscripten, and other
...)
TODO: check
CVE-2018-16980 (dotCMS V5.0.1 has XSS in the ...)
- TODO: check
+ NOT-FOR-US: dotCMS
CVE-2018-16979 (Monstra CMS V3.0.4 allows HTTP header injection in the ...)
NOT-FOR-US: Monstra CMS
CVE-2018-16978 (Monstra CMS V3.0.4 has XSS when ones tries to register an
account with ...)
@@ -40,7 +40,7 @@ CVE-2018-16964
CVE-2018-16963
RESERVED
CVE-2018-16962 (Webroot SecureAnywhere before 9.0.8.34 on macOS mishandles
access to ...)
- TODO: check
+ NOT-FOR-US: Webroot SecureAnywhere
CVE-2018-16961
RESERVED
CVE-2018-16960
@@ -3280,7 +3280,7 @@ CVE-2018-15612
CVE-2018-15611
RESERVED
CVE-2018-15610 (A vulnerability in the one-X Portal component of Avaya IP
Office ...)
- TODO: check
+ NOT-FOR-US: Avaya
CVE-2018-15609
RESERVED
CVE-2018-15608 (Zoho ManageEngine ADManager Plus 6.5.7 allows HTML Injection
on the ...)
@@ -7778,7 +7778,7 @@ CVE-2018-13801
CVE-2018-13800
RESERVED
CVE-2018-13799 (A vulnerability has been identified in SIMATIC WinCC OA V3.14
and ...)
- TODO: check
+ NOT-FOR-US: SIMATIC
CVE-2018-13798
RESERVED
CVE-2018-13796 (An issue was discovered in GNU Mailman before 2.1.28. A
crafted URL ...)
@@ -11909,7 +11909,7 @@ CVE-2018-12177
CVE-2018-12176 (Improper input validation in firmware for Intel NUC Kits may
allow a ...)
NOT-FOR-US: Intel
CVE-2018-12175 (Default install directory permissions in Intel Distribution
for Python ...)
- TODO: check
+ NOT-FOR-US: Intel Distribution for Python
CVE-2018-12174
RESERVED
CVE-2018-12173
@@ -11923,7 +11923,7 @@ CVE-2018-12170
CVE-2018-12169
RESERVED
CVE-2018-12168 (Privilege escalation in file permissions in Intel Computing
...)
- TODO: check
+ NOT-FOR-US: Intel
CVE-2018-12167
RESERVED
CVE-2018-12166
@@ -21568,7 +21568,7 @@ CVE-2018-8481
CVE-2018-8480
RESERVED
CVE-2018-8479 (A spoofing vulnerability exists for the Azure IoT Device
Provisioning ...)
- TODO: check
+ NOT-FOR-US: Azure
CVE-2018-8478
RESERVED
CVE-2018-8477
@@ -21578,7 +21578,7 @@ CVE-2018-8476
CVE-2018-8475 (A remote code execution vulnerability exists when Windows does
not ...)
NOT-FOR-US: Microsoft
CVE-2018-8474 (A security feature bypass vulnerability exists when Lync for
Mac 2011 ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8473
RESERVED
CVE-2018-8472
@@ -21628,67 +21628,67 @@ CVE-2018-8451
CVE-2018-8450
RESERVED
CVE-2018-8449 (A security feature bypass exists when Device Guard incorrectly
...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8448
RESERVED
CVE-2018-8447 (A remote code execution vulnerability exists when Internet
Explorer ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8446 (An information disclosure vulnerability exists when the Windows
kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8445 (An information disclosure vulnerability exists when the Windows
kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8444 (An information disclosure vulnerability exists in the way that
the ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8443 (An information disclosure vulnerability exists when the Windows
kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8442 (An information disclosure vulnerability exists when the Windows
kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8441 (An elevation of privilege vulnerability exists due to an
integer ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8440 (An elevation of privilege vulnerability exists when Windows
improperly ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8439 (A remote code execution vulnerability exists when Windows
Hyper-V on a ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8438 (A denial of service vulnerability exists when Microsoft Hyper-V
...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8437 (A denial of service vulnerability exists when Microsoft Hyper-V
...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8436 (A denial of service vulnerability exists when Microsoft Hyper-V
...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8435 (A security feature bypass vulnerability exists when Windows
Hyper-V ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8434 (An information disclosure vulnerability exists when Windows
Hyper-V on ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8433 (An information disclosure vulnerability exists when the Windows
...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8432
RESERVED
CVE-2018-8431 (An elevation of privilege vulnerability exists when Microsoft
...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8430 (A remote code execution vulnerability exists in Microsoft Word
if a ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8429 (An information disclosure vulnerability exists when Microsoft
Excel ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8428 (An elevation of privilege vulnerability exists when Microsoft
...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8427
RESERVED
CVE-2018-8426 (A cross-site-scripting (XSS) vulnerability exists when
Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8425 (A spoofing vulnerability exists when Microsoft Edge improperly
handles ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8424 (An information disclosure vulnerability exists when the Windows
GDI ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8423
RESERVED
CVE-2018-8422 (An information disclosure vulnerability exists when the Windows
GDI ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8421 (A remote code execution vulnerability exists when Microsoft
.NET ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8420 (A remote code execution vulnerability exists when the Microsoft
XML ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8419 (An information disclosure vulnerability exists when the Windows
kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8418
RESERVED
CVE-2018-8417
@@ -21706,9 +21706,9 @@ CVE-2018-8412 (An elevation of privilege vulnerability
exists when the Microsoft
CVE-2018-8411
RESERVED
CVE-2018-8410 (An elevation of privilege vulnerability exists when the Windows
Kernel ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8409 (A denial of service vulnerability exists when
System.IO.Pipelines ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8408
RESERVED
CVE-2018-8407
@@ -21740,11 +21740,11 @@ CVE-2018-8395
CVE-2018-8394 (An information disclosure vulnerability exists when the Windows
GDI ...)
NOT-FOR-US: Microsoft
CVE-2018-8393 (A buffer overflow vulnerability exists in the Microsoft JET
Database ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8392 (A buffer overflow vulnerability exists in the Microsoft JET
Database ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8391 (A remote code execution vulnerability exists in the way that
the ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2018-8390 (A remote code execution vulnerability exists in the way that
the ...)
NOT-FOR-US: Microsoft
CVE-2018-8389 (A remote code execution vulnerability exists in the way that
the ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8d6bcb4b7ae4817dd7c4455dbf96fda85bb8a52e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8d6bcb4b7ae4817dd7c4455dbf96fda85bb8a52e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
