[Secure-testing-commits] r51711 - data/CVE

Moritz Muehlenhoff Wed, 17 May 2017 23:57:00 -0700

Author: jmm
Date: 2017-05-18 06:56:24 +0000 (Thu, 18 May 2017)
New Revision: 51711


Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-05-18 06:35:28 UTC (rev 51710)
+++ data/CVE/list       2017-05-18 06:56:24 UTC (rev 51711)
@@ -1,7 +1,7 @@
 CVE-2017-9058 [Heap-based buffer overflow due to incorrect boundary checking]
         - libytnef <unfixed> (bug #862556)
 CVE-2017-9030 (The Codextrous B2J Contact (aka b2j_contact) extension before 
2.1.13 ...)
-       TODO: check
+       NOT-FOR-US: Joomla extension
 CVE-2017-9029
        RESERVED
 CVE-2017-9028
@@ -9,9 +9,9 @@
 CVE-2017-9027
        RESERVED
 CVE-2017-9026 (Stack buffer overflow in vshttpd (aka ioos) in HooToo Trip Mate 
6 (TM6) ...)
-       TODO: check
+       NOT-FOR-US: HooHoo Trip Mate
 CVE-2017-9025 (Heap buffer overflow in vshttpd (aka ioos) in HooToo Trip Mate 
6 (TM6) ...)
-       TODO: check
+       NOT-FOR-US: HooHoo Trip Mate
 CVE-2017-XXXX [A cross-site scripting (XSS) vulnerability was discovered 
related to the Customizer]
        - wordpress 4.7.5+dfsg-1 (bug #862816)
        NOTE: https://wordpress.org/news/2017/05/wordpress-4-7-5/
@@ -226,6 +226,7 @@
        NOT-FOR-US: Simple Invoices
 CVE-2017-8929 (The sized_string_cmp function in libyara/sizedstr.c in YARA 
3.5.0 ...)
        - yara <unfixed>
+       [jessie] - yara <no-dsa> (Minor issue)
        NOTE: https://github.com/VirusTotal/yara/issues/658
        NOTE: 
https://github.com/VirusTotal/yara/commit/053e67e3ec81cc9268ce30eaf0d6663d8639ed1e
 CVE-2017-8928 (mailcow 0.14, as used in &quot;mailcow: dockerized&quot; and 
other products, has ...)
@@ -11328,9 +11329,9 @@
 CVE-2017-5216 (Stack-based buffer overflow vulnerability in Netop Remote 
Control ...)
        NOT-FOR-US: Netop Remote Control
 CVE-2017-5215 (The Codextrous B2J Contact (aka b2j_contact) extension before 
2.1.13 ...)
-       TODO: check
+       NOT-FOR-US: Joomla extension
 CVE-2017-5214 (The Codextrous B2J Contact (aka b2j_contact) extension before 
2.1.13 ...)
-       TODO: check
+       NOT-FOR-US: Joomla extension
 CVE-2017-5213
        RESERVED
 CVE-2017-5212
@@ -68337,7 +68338,7 @@
 CVE-2015-4071
        RESERVED
 CVE-2015-4070 (Open redirect vulnerability in the proxyimages function in ...)
-       TODO: check
+       NOT-FOR-US: Wow Moodboard Lite
 CVE-2015-4069 (The EdgeServiceImpl web service in Arcserve UDP before 5.0 
Update 4 ...)
        NOT-FOR-US: EdgeServiceImpl web service in Arcserve UDP
 CVE-2015-4068 (Directory traversal vulnerability in Arcserve UDP before 5.0 
Update 4 ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r51711 - data/CVE

Reply via email to