Author: jmm
Date: 2017-03-10 07:36:02 +0000 (Fri, 10 Mar 2017)
New Revision: 49551
Modified:
data/CVE/list
Log:
NFUs
potential linux issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-10 06:45:42 UTC (rev 49550)
+++ data/CVE/list 2017-03-10 07:36:02 UTC (rev 49551)
@@ -15514,7 +15514,7 @@
CVE-2017-0529 (An information disclosure vulnerability in the MediaTek driver
could ...)
NOT-FOR-US: MediaTek driver for Android
CVE-2017-0528 (An elevation of privilege vulnerability in the kernel security
...)
- TODO: check
+ - linux <undetermined>
CVE-2017-0527 (An elevation of privilege vulnerability in the HTC Sensor Hub
Driver ...)
NOT-FOR-US: HTC driver for Android
CVE-2017-0526 (An elevation of privilege vulnerability in the HTC Sensor Hub
Driver ...)
@@ -15550,13 +15550,13 @@
CVE-2017-0511
RESERVED
CVE-2017-0510 (An elevation of privilege vulnerability in the kernel FIQ
debugger ...)
- TODO: check
+ - linux <not-affected> (Android-specific patch)
CVE-2017-0509 (An elevation of privilege vulnerability in the Broadcom Wi-Fi
driver ...)
- TODO: check
+ NOT-FOR-US: Broadcom driver for Android
CVE-2017-0508 (An elevation of privilege vulnerability in the kernel ION
subsystem ...)
- TODO: check
+ TODO: check, present in drivers/staging/android/ion
CVE-2017-0507 (An elevation of privilege vulnerability in the kernel ION
subsystem ...)
- TODO: check
+ TODO: check, present in drivers/staging/android/ion
CVE-2017-0506 (An elevation of privilege vulnerability in MediaTek components,
...)
NOT-FOR-US: MediaTek driver for Android
CVE-2017-0505 (An elevation of privilege vulnerability in MediaTek components,
...)
@@ -15570,103 +15570,103 @@
CVE-2017-0501 (An elevation of privilege vulnerability in MediaTek components,
...)
NOT-FOR-US: MediaTek driver for Android
CVE-2017-0500 (An elevation of privilege vulnerability in MediaTek components,
...)
- TODO: check
+ NOT-FOR-US: MediaTek driver for Android
CVE-2017-0499 (A denial of service vulnerability in Audioserver could enable a
local ...)
- TODO: check
+ NOT-FOR-US: Android Audioserver
CVE-2017-0498 (A denial of service vulnerability in Setup Wizard could allow a
local ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0497 (A denial of service vulnerability in Mediaserver could enable
an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0496 (A denial of service vulnerability in Setup Wizard could allow a
local ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0495 (An information disclosure vulnerability in Mediaserver could
enable a ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0494 (An information disclosure vulnerability in AOSP Messaging could
enable ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0493
RESERVED
CVE-2017-0492 (An elevation of privilege vulnerability in the System UI could
enable ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0491 (An elevation of privilege vulnerability in Package Manager
could ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0490 (An elevation of privilege vulnerability in Wi-Fi could enable a
local ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0489 (An elevation of privilege vulnerability in Location Manager
could ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0488 (A denial of service vulnerability in Mediaserver could enable
an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0487 (A denial of service vulnerability in Mediaserver could enable
an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0486 (A denial of service vulnerability in Mediaserver could enable
an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0485 (A denial of service vulnerability in Mediaserver could enable
an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0484 (A denial of service vulnerability in Mediaserver could enable
an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0483 (A denial of service vulnerability in Mediaserver could enable
an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0482 (A denial of service vulnerability in Mediaserver could enable
an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0481 (An elevation of privilege vulnerability in NFC could enable a
...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0480 (An elevation of privilege vulnerability in Audioserver could
enable a ...)
- TODO: check
+ NOT-FOR-US: Android Audioserver
CVE-2017-0479 (An elevation of privilege vulnerability in Audioserver could
enable a ...)
- TODO: check
+ NOT-FOR-US: Android Audioserver
CVE-2017-0478 (A remote code execution vulnerability in the Framesequence
library ...)
TODO: check
CVE-2017-0477 (A remote code execution vulnerability in libgdx could enable an
...)
TODO: check
CVE-2017-0476 (A remote code execution vulnerability in AOSP Messaging could
enable ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0475 (An elevation of privilege vulnerability in the recovery
verifier could ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-0474 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0473 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0472 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0471 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0470 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0469 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0468 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0467 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0466 (A remote code execution vulnerability in Mediaserver could
enable an ...)
- TODO: check
+ NOT-FOR-US: Android Mediaserver
CVE-2017-0465
RESERVED
CVE-2017-0464 (An elevation of privilege vulnerability in the Qualcomm Wi-Fi
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0463 (An elevation of privilege vulnerability in the Qualcomm
networking ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0462
RESERVED
CVE-2017-0461 (An information disclosure vulnerability in the Qualcomm Wi-Fi
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0460 (An elevation of privilege vulnerability in the Qualcomm
networking ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0459 (An information disclosure vulnerability in the Qualcomm Wi-Fi
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0458 (An elevation of privilege vulnerability in the Qualcomm camera
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0457 (An elevation of privilege vulnerability in the Qualcomm ADSPRPC
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0456 (An elevation of privilege vulnerability in the Qualcomm IPA
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0455 (An information disclosure vulnerability in the Qualcomm
bootloader ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0454
RESERVED
CVE-2017-0453 (An elevation of privilege vulnerability in the Qualcomm Wi-Fi
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0452 (An information disclosure vulnerability in the Qualcomm camera
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0451 (An information disclosure vulnerability in the Qualcomm sound
driver ...)
NOT-FOR-US: Qualcomm driver for Android
CVE-2017-0450 (An elevation of privilege vulnerability in Audioserver could
enable a ...)
@@ -16122,17 +16122,17 @@
CVE-2017-0339
RESERVED
CVE-2017-0338 (An elevation of privilege vulnerability in the NVIDIA GPU
driver could ...)
- TODO: check
+ NOT-FOR-US: NVIDIA driver for Android
CVE-2017-0337 (An elevation of privilege vulnerability in the NVIDIA GPU
driver could ...)
- TODO: check
+ NOT-FOR-US: NVIDIA driver for Android
CVE-2017-0336 (An information disclosure vulnerability in the NVIDIA GPU
driver could ...)
- TODO: check
+ NOT-FOR-US: NVIDIA driver for Android
CVE-2017-0335 (An elevation of privilege vulnerability in the NVIDIA GPU
driver could ...)
- TODO: check
+ NOT-FOR-US: NVIDIA driver for Android
CVE-2017-0334 (An information disclosure vulnerability in the NVIDIA GPU
driver could ...)
- TODO: check
+ NOT-FOR-US: NVIDIA driver for Android
CVE-2017-0333 (An elevation of privilege vulnerability in the NVIDIA GPU
driver could ...)
- TODO: check
+ NOT-FOR-US: NVIDIA driver for Android
CVE-2017-0332
RESERVED
CVE-2017-0331
@@ -16209,9 +16209,9 @@
CVE-2017-0308 (All versions of NVIDIA Windows GPU Display Driver contain a ...)
NOT-FOR-US: NVIDIA drivers for Windows
CVE-2017-0307 (An elevation of privilege vulnerability in the NVIDIA GPU
driver could ...)
- TODO: check
+ NOT-FOR-US: NVIDIA driver for Android
CVE-2017-0306 (An elevation of privilege vulnerability in the NVIDIA GPU
driver could ...)
- TODO: check
+ NOT-FOR-US: NVIDIA driver for Android
CVE-2016-9638 (In BMC Patrol before 9.13.10.02, the binary
"listguests64" is ...)
NOT-FOR-US: BMC Patrol
CVE-2016-9637 (The (1) ioport_read and (2) ioport_write functions in Xen, when
qemu ...)
@@ -20236,7 +20236,7 @@
CVE-2016-8484
RESERVED
CVE-2016-8483 (An information disclosure vulnerability in the Qualcomm power
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8482
RESERVED
CVE-2016-8481 (An elevation of privilege vulnerability in the Qualcomm sound
driver ...)
@@ -20244,11 +20244,11 @@
CVE-2016-8480 (An elevation of privilege vulnerability in the Qualcomm Secure
...)
NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8479 (An elevation of privilege vulnerability in the Qualcomm GPU
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8478 (An information disclosure vulnerability in the Qualcomm video
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8477 (An information disclosure vulnerability in the Qualcomm camera
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8476 (An elevation of privilege vulnerability in the Qualcomm Wi-Fi
driver ...)
NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8475 (An information disclosure vulnerability in the HTC input driver
could ...)
@@ -20368,15 +20368,15 @@
CVE-2016-8418 (A remote code execution vulnerability in the Qualcomm crypto
driver ...)
NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8417 (An elevation of privilege vulnerability in the Qualcomm camera
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8416 (An information disclosure vulnerability in the Qualcomm video
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8415 (An elevation of privilege vulnerability in the Qualcomm Wi-Fi
driver ...)
NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8414 (An information disclosure vulnerability in the Qualcomm Secure
...)
NOT-FOR-US: Qualcomm Secure Execution Environment Communicator
CVE-2016-8413 (An information disclosure vulnerability in the Qualcomm camera
driver ...)
- TODO: check
+ NOT-FOR-US: Qualcomm driver for Android
CVE-2016-8412 (An elevation of privilege vulnerability in the Qualcomm camera
could ...)
NOT-FOR-US: Qualcomm component for Android
CVE-2016-8411 (Buffer overflow vulnerability while processing QMI QOS TLVs.
Product: ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
