[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff Mon, 15 Oct 2018 09:33:02 -0700

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
abed52ad by Moritz Muehlenhoff at 2018-10-15T16:31:40Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -44179,7 +44179,7 @@ CVE-2018-1846
 CVE-2018-1845
        RESERVED
 CVE-2018-1844 (IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to a 
XML ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1843
        RESERVED
 CVE-2018-1842
@@ -44191,7 +44191,7 @@ CVE-2018-1840
 CVE-2018-1839
        RESERVED
 CVE-2018-1838 (IBM WebSphere Application Server 8.5 and 9.0 in IBM Cloud could 
allow ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1837
        RESERVED
 CVE-2018-1836
@@ -44327,7 +44327,7 @@ CVE-2018-1772
 CVE-2018-1771
        RESERVED
 CVE-2018-1770 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could 
allow a ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1769
        RESERVED
 CVE-2018-1768 (IBM Spectrum Protect Plus 10.1.0 and 10.1.1 could disclose 
sensitive ...)
@@ -44377,7 +44377,7 @@ CVE-2018-1747
 CVE-2018-1746
        RESERVED
 CVE-2018-1745 (IBM Security Key Lifecycle Manager 2.7 and 3.0 could allow an 
...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1744
        RESERVED
 CVE-2018-1743 (IBM Tivoli Key Lifecycle Manager 2.6, 2.7, and 3.0 discloses 
sensitive ...)
@@ -44391,7 +44391,7 @@ CVE-2018-1740
 CVE-2018-1739
        RESERVED
 CVE-2018-1738 (IBM Security Key Lifecycle Manager 2.6, 2.7, 3.0 could allow an 
...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1737
        RESERVED
 CVE-2018-1736 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could allow a 
remote ...)
@@ -44419,7 +44419,7 @@ CVE-2018-1726
 CVE-2018-1725
        RESERVED
 CVE-2018-1724 (IBM Spectrum LSF 9.1.1 9.1.2, 9.1.3, and 10.1 could allow a 
local user ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1723 (IBM Spectrum Scale 4.1.1.0, 4.1.1.20, 4.2.0.0, 4.2.3.10, 5.0.0 
and ...)
        NOT-FOR-US: IBM
 CVE-2018-1722 (IBM Security Access Manager Appliance 9.0.4.0 and 9.0.5.0 could 
allow ...)
@@ -44451,11 +44451,11 @@ CVE-2018-1710 (IBM DB2 for Linux, UNIX and Windows 
(includes DB2 Connect Server)
 CVE-2018-1709
        RESERVED
 CVE-2018-1708 (IBM Spectrum Symphony 7.1.2 and 7.2.0.2 could allow an 
authenticated ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1707
        RESERVED
 CVE-2018-1706 (IBM Spectrum Symphony 7.2.0.2 is vulnerable to cross-site 
scripting. ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1705 (IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum 
...)
        NOT-FOR-US: IBM Platform Symphony
 CVE-2018-1704 (IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum 
...)
@@ -44521,7 +44521,7 @@ CVE-2018-1675
 CVE-2018-1674 (IBM Business Process Manager 8.5 through 8.6 and 18.0.0.0 
through ...)
        NOT-FOR-US: IBM
 CVE-2018-1673 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to 
...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1672 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 may fail to set the 
...)
        NOT-FOR-US: IBM
 CVE-2018-1671
@@ -44799,9 +44799,9 @@ CVE-2018-1536 (IBM Rational Rhapsody Design Manager 5.0 
through 5.0.2 and 6.0 th
 CVE-2018-1535 (IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 
through ...)
        NOT-FOR-US: IBM Rational Rhapsody Design Manager
 CVE-2018-1534 (IBM Rational Publishing Engine 6.0.5 and 6.0.6 is vulnerable to 
...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1533 (IBM Rational Publishing Engine 6.0.5 and 6.0.6 is vulnerable to 
...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2018-1532 (IBM API Connect 5.0.0.0 through 5.0.8.2 does not properly 
update the ...)
        NOT-FOR-US: IBM API Connect
 CVE-2018-1531
@@ -46152,7 +46152,7 @@ CVE-2018-1266 (Cloud Foundry Cloud Controller, versions 
prior to 1.52.0, contain
 CVE-2018-1265 (Cloud Foundry Diego, release versions prior to 2.8.0, does not 
...)
        NOT-FOR-US: Cloud Foundry
 CVE-2018-1264 (Cloud Foundry Log Cache, versions prior to 1.1.1, logs its UAA 
client ...)
-       TODO: check
+       NOT-FOR-US: Cloud Foundry
 CVE-2018-1263 (Addresses partial fix in CVE-2018-1261. Pivotal ...)
        NOT-FOR-US: Spring-integration-zip
 CVE-2018-1262 (Cloud Foundry Foundation UAA, versions 4.12.X and 4.13.X, 
introduced a ...)
@@ -46237,7 +46237,7 @@ CVE-2018-1225
 CVE-2018-1224
        REJECTED
 CVE-2018-1223 (Cloud Foundry Container Runtime (kubo-release), versions prior 
to ...)
-       TODO: check
+       NOT-FOR-US: Cloud Foundry
 CVE-2018-1222
        REJECTED
 CVE-2018-1221 (In cf-deployment before 1.14.0 and routing-release before 
0.172.0, the ...)
@@ -46491,9 +46491,9 @@ CVE-2018-1152 (libjpeg-turbo 1.5.90 is vulnerable to a 
denial of service ...)
 CVE-2018-1151 (The web server on Western Digital TV Media Player 1.03.07 and 
TV Live ...)
        NOT-FOR-US: web server on Western Digital TV Media Player and TV Live 
Hub
 CVE-2018-1150 (NUUO's NVRMini2 3.8.0 and below contains a backdoor that would 
allow ...)
-       TODO: check
+       NOT-FOR-US: NUUO 
 CVE-2018-1149 (cgi_system in NUUO's NVRMini2 3.8.0 and below allows remote 
attackers ...)
-       TODO: check
+       NOT-FOR-US: NUUO 
 CVE-2018-1148 (In Nessus before 7.1.0, Session Fixation exists due to 
insufficient ...)
        NOT-FOR-US: Nessus
 CVE-2018-1147 (In Nessus before 7.1.0, a XSS vulnerability exists due to 
improper ...)
@@ -47869,7 +47869,7 @@ CVE-2018-0967 (A denial of service vulnerability exists 
in the way that Windows
 CVE-2018-0966 (A security feature bypass exists when Device Guard incorrectly 
...)
        NOT-FOR-US: Microsoft
 CVE-2018-0965 (A remote code execution vulnerability exists when Windows 
Hyper-V on a ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2018-0964 (An information disclosure vulnerability exists when Windows 
Hyper-V on ...)
        NOT-FOR-US: Microsoft
 CVE-2018-0963 (An elevation of privilege vulnerability exists in the way that 
the ...)
@@ -48551,7 +48551,7 @@ CVE-2018-0720
 CVE-2018-0719
        RESERVED
 CVE-2018-0718 (Command injection vulnerability in Music Station 5.1.2 and 
earlier ...)
-       TODO: check
+       NOT-FOR-US: Music Station
 CVE-2018-0717
        RESERVED
 CVE-2018-0716



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/abed52ad9b1daa60bba33f6d15180e977c591da6

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/abed52ad9b1daa60bba33f6d15180e977c591da6
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] NFUs

Reply via email to