Author: jmm Date: 2017-05-05 21:36:11 +0000 (Fri, 05 May 2017) New Revision: 51357
Modified: data/CVE/list Log: NFUs Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-05-05 21:10:16 UTC (rev 51356) +++ data/CVE/list 2017-05-05 21:36:11 UTC (rev 51357) @@ -1,31 +1,31 @@ CVE-2017-8801 (Trend Micro OfficeScan 11.0 before SP1 CP 6325 (with Agent Module Build ...) - TODO: check + NOT-FOR-US: Trend Micro CVE-2017-8800 RESERVED CVE-2017-8799 (Untrusted input execution via igetwild in all iRODS versions before ...) - TODO: check + NOT-FOR-US: iRODS CVE-2017-8798 RESERVED CVE-2017-8797 RESERVED CVE-2017-8796 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8795 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8794 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8793 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8792 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8791 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8790 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8789 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. A ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8788 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8787 (The PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry function in ...) - libpodofo <unfixed> (bug #861738) CVE-2017-8786 (pcre2test.c in PCRE2 10.23 allows remote attackers to cause a denial of ...) @@ -91,7 +91,7 @@ CVE-2017-8761 RESERVED CVE-2017-8760 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8759 RESERVED CVE-2017-8758 @@ -1153,9 +1153,9 @@ CVE-2017-8306 RESERVED CVE-2017-8304 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8303 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...) - TODO: check + NOT-FOR-US: Accellion FTA devices CVE-2017-8302 (Mura CMS 7.0.6967 allows admin/?muraAction= XSS attacks, related to ...) NOT-FOR-US: Mura CMS CVE-2017-8300 @@ -1667,7 +1667,7 @@ CVE-2017-8081 (Poor cryptographic salt initialization in ...) NOT-FOR-US: GetSimple CMS CVE-2017-8080 (Atlassian Hipchat Server before 2.2.4 allows remote authenticated ...) - TODO: check + NOT-FOR-US: HipChat CVE-2010-5329 (The video_usercopy function in drivers/media/video/v4l2-ioctl.c in the ...) - linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename) NOTE: Fixed by: https://git.kernel.org/linus/fc0a80798576f80ca10b3f6c9c7097f12fd1d64e (v2.6.39-rc2) @@ -20691,7 +20691,7 @@ CVE-2017-1157 RESERVED CVE-2017-1156 (IBM WebSphere Portal 8.5 and 9.0 could allow a remote attacker to ...) - TODO: check + NOT-FOR-US: IBM CVE-2017-1155 (IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could ...) NOT-FOR-US: IBM CVE-2017-1154 (IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could ...) @@ -21372,9 +21372,9 @@ CVE-2016-9693 (IBM Business Process Manager 7.5, 8.0, and 8.5 has a file download ...) NOT-FOR-US: IBM CVE-2016-9692 (IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to ...) - TODO: check + NOT-FOR-US: IBM CVE-2016-9691 (IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to a ...) - TODO: check + NOT-FOR-US: IBM CVE-2016-9690 RESERVED CVE-2016-9689 @@ -25454,7 +25454,7 @@ CVE-2016-8917 (IBM Sterling Order Management 9.2 - 9.5 is vulnerable to cross-site ...) NOT-FOR-US: IBM CVE-2016-8916 (IBM Tivoli Storage Manager 5.5, 6.1-6.4, and 7.1 stores password ...) - TODO: check + NOT-FOR-US: IBM CVE-2016-8915 (IBM WebSphere MQ 8.0 could allow an authenticated user with access to ...) NOT-FOR-US: IBM CVE-2016-8914 @@ -31902,7 +31902,7 @@ - botan1.10 <not-affected> (Introduced in 1.11.12) NOTE: Introduced in 1.11.12, fixed in 1.11.31 CVE-2016-6877 (Citrix XenMobile Server before 10.5.0.24 allows man-in-the-middle ...) - TODO: check + NOT-FOR-US: Citrix CVE-2016-6876 (The RESOLV::lookup iRule command in F5 BIG-IP LTM, APM, ASM, and Link ...) NOT-FOR-US: F5 CVE-2016-6869 @@ -54354,7 +54354,7 @@ CVE-2016-0256 RESERVED CVE-2016-0255 (IBM Marketing Platform 9.1 and 10.0 is vulnerable to stored cross-site ...) - TODO: check + NOT-FOR-US: IBM CVE-2016-0254 RESERVED CVE-2016-0253 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits