Author: geissert
Date: 2017-10-25 07:20:42 +0000 (Wed, 25 Oct 2017)
New Revision: 56953
Modified:
data/CVE/list
Log:
redis issue, some NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-25 06:49:51 UTC (rev 56952)
+++ data/CVE/list 2017-10-25 07:20:42 UTC (rev 56953)
@@ -13,7 +13,7 @@
CVE-2017-15868
RESERVED
CVE-2017-15867 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: user-login-history plugin for WordPress
CVE-2017-15866
RESERVED
CVE-2017-15865
@@ -21,6 +21,7 @@
CVE-2017-15864
RESERVED
CVE-2016-10517 (networking.c in Redis before 3.2.7 allows "Cross Protocol
Scripting" ...)
+ - redis <unfixed>
TODO: check
CVE-2017-15863 (Cross Site Scripting (XSS) exists in the wp-noexternallinks
plugin ...)
NOT-FOR-US: WordPress plugin wp-noexternallinks
@@ -1509,9 +1510,9 @@
CVE-2017-15224
RESERVED
CVE-2017-15223 (Denial-of-service vulnerability in ArGoSoft Mini Mail Server
1.0.0.2 ...)
- TODO: check
+ NOT-FOR-US: ArGoSoft Mini Mail Server
CVE-2017-15222 (Buffer Overflow vulnerability in Ayukov NFTPD 2.0 and earlier
allows ...)
- TODO: check
+ NOT-FOR-US: Ayukov NFTPD
CVE-2017-15221 (ASX to MP3 converter 3.1.3.7.2010.11.05 has a buffer overflow
via a ...)
NOT-FOR-US: ASX to MP3 converter
CVE-2017-15220 (Flexense VX Search Enterprise 10.1.12 is vulnerable to a
buffer ...)
@@ -125054,7 +125055,7 @@
CVE-2014-0692
RESERVED
CVE-2014-0691 (Cisco WebEx Meetings Server before 1.1 uses meeting IDs with
...)
- TODO: check
+ NOT-FOR-US: Cisco WebEx Meetings Server
CVE-2014-0690
RESERVED
CVE-2014-0689
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
