[Git][security-tracker-team/security-tracker][master] Process some NFUs

Sat, 01 Dec 2018 13:13:09 -0800 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
e1f1c9b3 by Salvatore Bonaccorso at 2018-12-01T21:12:08Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13154,7 +13154,7 @@ CVE-2018-15718
 CVE-2018-15717
        RESERVED
 CVE-2018-15716 (NUUO NVRMini2 version 3.10.0 and earlier is vulnerable to ...)
-       TODO: check
+       NOT-FOR-US: NUUO NVRMini2
 CVE-2018-15715 (Zoom clients on Windows (before version 4.1.34814.1119), Mac 
OS ...)
        TODO: check
 CVE-2018-15714 (Nagios XI 5.5.6 allows reflected cross site scripting from 
remote ...)
@@ -45003,9 +45003,9 @@ CVE-2018-4041
 CVE-2018-4040
        RESERVED
 CVE-2018-4039 (An exploitable out-of-bounds write vulnerability exists in the 
PNG ...)
-       TODO: check
+       NOT-FOR-US: Atlantis Word Processor
 CVE-2018-4038 (An exploitable arbitrary write vulnerability exists in the open 
...)
-       TODO: check
+       NOT-FOR-US: Atlantis Word Processor
 CVE-2018-4037
        RESERVED
 CVE-2018-4036
@@ -45193,7 +45193,7 @@ CVE-2018-3953 (Devices in the Linksys ESeries line of 
routers (Linksys E1200 Fir
 CVE-2018-3952 (An exploitable code execution vulnerability exists in the 
connect ...)
        NOT-FOR-US: NordVPN
 CVE-2018-3951 (An exploitable remote code execution vulnerability exists in 
the HTTP ...)
-       TODO: check
+       NOT-FOR-US: TP-Link
 CVE-2018-3950 (An exploitable remote code execution vulnerability exists in 
the ping ...)
        NOT-FOR-US: TP-Link
 CVE-2018-3949 (An exploitable information disclosure vulnerability exists in 
the HTTP ...)
@@ -55715,7 +55715,7 @@ CVE-2018-0718 (Command injection vulnerability in Music 
Station 5.1.2 and earlie
 CVE-2018-0717
        RESERVED
 CVE-2018-0716 (Cross-site scripting vulnerability in QTS 4.2.6 build 20180711, 
QTS ...)
-       TODO: check
+       NOT-FOR-US: QNAP
 CVE-2018-0715 (Cross-site scripting vulnerability in QNAP Photo Station 
versions ...)
        NOT-FOR-US: QNAP Photo Station
 CVE-2018-0714 (Command injection vulnerability in Helpdesk versions 1.1.21 and 
...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/e1f1c9b373a39af93c1d1e4b1896fa4cd52ba602

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/e1f1c9b373a39af93c1d1e4b1896fa4cd52ba602
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to