Author: alteholz
Date: 2017-02-04 18:51:33 +0000 (Sat, 04 Feb 2017)
New Revision: 48715
Modified:
data/CVE/list
Log:
Microsoft NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-04 18:45:49 UTC (rev 48714)
+++ data/CVE/list 2017-02-04 18:51:33 UTC (rev 48715)
@@ -21831,7 +21831,7 @@
CVE-2016-7207
RESERVED
CVE-2016-7206 (Cross-site scripting (XSS) vulnerability in Microsoft Edge
allows ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-7205 (Animation Manager in Microsoft Windows Server 2008 R2 SP1,
Windows 7 ...)
NOT-FOR-US: Microsoft
CVE-2016-7204 (Microsoft Edge allows remote attackers to access arbitrary
"My ...)
@@ -21881,7 +21881,7 @@
CVE-2016-7182 (The Graphics component in Microsoft Windows Vista SP2; Windows
Server ...)
NOT-FOR-US: Microsoft
CVE-2016-7181 (Microsoft Edge allows remote attackers to execute arbitrary
code or ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-7393 [stack-based buffer overflow in aac_sync (aac_parser.c)]
RESERVED
{DLA-644-1}
@@ -34899,13 +34899,13 @@
CVE-2016-3380
RESERVED
CVE-2016-3379 (Cross-site scripting (XSS) vulnerability in Microsoft Exchange
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3378 (Open redirect vulnerability in Microsoft Exchange Server 2013
SP1, ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3377 (The Chakra JavaScript engine in Microsoft Edge allows remote
attackers ...)
NOT-FOR-US: Microsoft
CVE-2016-3376 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3375 (The OLE Automation mechanism and VBScript scripting engine in
...)
TODO: check
CVE-2016-3374 (The PDF library in Microsoft Edge, Windows 8.1, Windows Server
2012 ...)
@@ -34923,7 +34923,7 @@
CVE-2016-3368 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2
SP1, ...)
NOT-FOR-US: Microsoft
CVE-2016-3367 (StringBuilder in Microsoft Silverlight 5 before 5.1.50709.0
does not ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3366 (Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1,
...)
NOT-FOR-US: Microsoft
CVE-2016-3365 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel
2013 ...)
@@ -34959,9 +34959,9 @@
CVE-2016-3350 (The Chakra JavaScript engine in Microsoft Edge allows remote
attackers ...)
NOT-FOR-US: Microsoft
CVE-2016-3349 (The kernel-mode drivers in Microsoft Windows 8.1, Windows
Server 2012 ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3348 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3347
RESERVED
CVE-2016-3346 (Microsoft Windows 10 Gold, 1511, and 1607 does not properly
enforce ...)
@@ -34969,13 +34969,13 @@
CVE-2016-3345 (The SMBv1 server in Microsoft Windows Vista SP2, Windows Server
2008 ...)
NOT-FOR-US: Microsoft
CVE-2016-3344 (The Secure Kernel Mode feature in Microsoft Windows 10 Gold and
1511 ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3343 (The Common Log File System (CLFS) driver in Microsoft Windows
Vista ...)
NOT-FOR-US: Microsoft
CVE-2016-3342 (The Common Log File System (CLFS) driver in Microsoft Windows
Vista ...)
NOT-FOR-US: Microsoft
CVE-2016-3341 (The kernel-mode drivers in Transaction Manager in Microsoft
Windows ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3340 (The Common Log File System (CLFS) driver in Microsoft Windows
Vista ...)
NOT-FOR-US: Microsoft
CVE-2016-3339
@@ -35035,13 +35035,13 @@
CVE-2016-3312 (ActiveSyncProvider in Microsoft Windows 10 Gold and 1511 allows
...)
TODO: check
CVE-2016-3311 (The kernel-mode drivers in Microsoft Windows Vista SP2; Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3310 (The kernel-mode drivers in Microsoft Windows Vista SP2; Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3309 (The kernel-mode drivers in Microsoft Windows Vista SP2; Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3308 (The kernel-mode drivers in Microsoft Windows Vista SP2; Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3307
RESERVED
CVE-2016-3306 (The kernel in Microsoft Windows Vista SP2, Windows Server 2008
SP2 and ...)
@@ -35206,7 +35206,7 @@
CVE-2016-3227 (Use-after-free vulnerability in the DNS Server component in
Microsoft ...)
TODO: check
CVE-2016-3226 (Active Directory in Microsoft Windows Server 2008 R2 SP1 and
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3225 (The SMB server component in Microsoft Windows Vista SP2,
Windows ...)
NOT-FOR-US: Microsoft
CVE-2016-3224
@@ -35216,13 +35216,13 @@
CVE-2016-3222 (Microsoft Edge allows remote attackers to execute arbitrary
code or ...)
NOT-FOR-US: Microsoft
CVE-2016-3221 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3220 (atmfd.dll in the Adobe Type Manager Font Driver in Microsoft
Windows ...)
TODO: check
CVE-2016-3219 (The kernel-mode driver in Microsoft Windows 10 Gold and 1511
allows ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3218 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3217
RESERVED
CVE-2016-3216 (GDI32.dll in the Graphics component in Microsoft Windows Vista
SP2, ...)
@@ -35252,7 +35252,7 @@
CVE-2016-3204 (The Microsoft (1) JScript 5.8 and 9 and (2) VBScript 5.7 and
5.8 ...)
TODO: check
CVE-2016-3203 (Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows
10 ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-3202 (The Microsoft (1) Chakra JavaScript, (2) JScript, and (3)
VBScript ...)
NOT-FOR-US: Microsoft
CVE-2016-3201 (Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows
10 ...)
@@ -45824,7 +45824,7 @@
CVE-2016-0197 (dxgkrnl.sys in the DirectX Graphics kernel subsystem in the ...)
TODO: check
CVE-2016-0196 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2016-0195 (The Imaging Component in Microsoft Windows Vista SP2, Windows
Server ...)
TODO: check
CVE-2016-0194 (Microsoft Internet Explorer 10 and 11 allows remote attackers
to ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
