Author: jmm
Date: 2017-03-06 20:32:00 +0000 (Mon, 06 Mar 2017)
New Revision: 49455
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-06 20:31:52 UTC (rev 49454)
+++ data/CVE/list 2017-03-06 20:32:00 UTC (rev 49455)
@@ -59,19 +59,19 @@
CVE-2017-6485 (A Cross-Site Scripting (XSS) issue was discovered in
php-calendar ...)
NOT-FOR-US: PHP-Calendar
CVE-2017-6484 (Multiple Cross-Site Scripting (XSS) issues were discovered in
...)
- TODO: check
+ NOT-FOR-US: INTER-Mediator
CVE-2017-6483 (Multiple Cross-Site Scripting (XSS) issues were discovered in
ATutor ...)
- TODO: check
+ NOT-FOR-US: ATutor
CVE-2017-6482 (Multiple Cross-Site Scripting (XSS) issues were discovered in
OpenEMR ...)
- TODO: check
+ NOT-FOR-US: OpenEMR
CVE-2017-6481 (Multiple Cross-Site Scripting (XSS) issues were discovered in
phpipam ...)
- TODO: check
+ NOT-FOR-US: phpipam
CVE-2017-6480 (groovel/cmsgroovel before 3.3.7-beta is vulnerable to a
reflected XSS ...)
- TODO: check
+ NOT-FOR-US: cmsgroovel
CVE-2017-6479 (FenixHosting/fenix-open-source before 2017-03-04 is vulnerable
to a ...)
- TODO: check
+ NOT-FOR-US: FenixHosting (different than fenix game engine)
CVE-2017-6478 (paintballrefjosh/MaNGOSWebV4 before 4.0.8 is vulnerable to a
reflected ...)
- TODO: check
+ NOT-FOR-US: MaNGOSWebV4
CVE-2016-10244 [denial of service]
- freetype <unfixed> (bug #856971)
NOTE: Fixed in 2.7:
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/tree/ChangeLog?h=VER-2-7
@@ -180,7 +180,7 @@
CVE-2017-6446 (XSS was discovered in Dotclear v2.11.2, affecting
admin/blogs.php and ...)
- dotclear <removed>
CVE-2017-6445 (The auto-update feature of Open Embedded Linux Entertainment
Center ...)
- TODO: check
+ NOT-FOR-US: OpenELEC
CVE-2017-6444
RESERVED
CVE-2017-6443
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
