[Secure-testing-commits] r58294 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-12-06 09:49:25 +0000 (Wed, 06 Dec 2017)
New Revision: 58294

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-12-06 09:49:13 UTC (rev 58293)
+++ data/CVE/list       2017-12-06 09:49:25 UTC (rev 58294)
@@ -1720,7 +1720,7 @@
 CVE-2017-17070
        RESERVED
 CVE-2017-17069 (ActiveSetupN.exe in Amazon Audible for Windows before November 
2017 ...)
-       TODO: check
+       NOT-FOR-US: ActiveSetupN.exe in Amazon Audible for Windows
 CVE-2017-17068
        RESERVED
 CVE-2017-17067 (Splunk Web in Splunk Enterprise 7.0.x before 7.0.0.1, 6.6.x 
before ...)
@@ -3982,7 +3982,7 @@
 CVE-2017-16857 (It is possible to bypass the bitbucket auto-unapprove plugin 
via ...)
        TODO: check
 CVE-2017-16856 (The RSS Feed macro in Atlassian Confluence before version 
6.5.2 allows ...)
-       TODO: check
+       NOT-FOR-US: Atlassian Confluence
 CVE-2017-16855 (Ipsilon before 2.1.0 has a "SAML2 multi-session 
vulnerability." ...)
        - ipsilon <itp> (bug #826838)
 CVE-2017-16854
@@ -11028,7 +11028,7 @@
 CVE-2017-14375 (EMC Unisphere for VMAX Virtual Appliance (vApp) versions prior 
to ...)
        NOT-FOR-US: EMC
 CVE-2017-14374 (The SMI-S service in Dell Storage Manager versions earlier 
than 16.3.20 ...)
-       TODO: check
+       NOT-FOR-US: Dell
 CVE-2017-14373 (EMC RSA Authentication Manager 8.2 SP1 P4 and earlier contains 
a ...)
        NOT-FOR-US: RSA Authentication Manager
 CVE-2017-14372 (RSA Archer GRC Platform prior to 6.2.0.5 is affected by 
reflected ...)
@@ -11066,7 +11066,7 @@
 CVE-2017-14356 (An SQL Injection vulnerability in HP ArcSight ESM and HP 
ArcSight ESM ...)
        NOT-FOR-US: HP ArcSight
 CVE-2017-14355 (A potential security vulnerability has been identified in HPE 
...)
-       TODO: check
+       NOT-FOR-US: HPE Connected Backup
 CVE-2017-14354 (A remote cross-site scripting vulnerability in HP UCMDB 
Foundation ...)
        NOT-FOR-US: HP UCMDB Foundation
 CVE-2017-14353 (A remote code execution vulnerability in HP UCMDB Foundation 
Software ...)
@@ -40614,7 +40614,7 @@
 CVE-2017-4921 (VMware vCenter Server (6.5 prior to 6.5 U1) contains an 
insecure ...)
        NOT-FOR-US: VMware
 CVE-2017-4920 (The implementation of the OSPF protocol in VMware NSX-V Edge 
6.2.x ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2017-4919 (VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with 
certain, ...)
        NOT-FOR-US: VMware vCenter Server
 CVE-2017-4918 (VMware Horizon View Client (2.x, 3.x and 4.x prior to 4.5.0) 
contains ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits