[Secure-testing-commits] r51895 - data/CVE

Tue, 23 May 2017 12:16:19 -0700 

Author: carnil
Date: 2017-05-23 19:15:38 +0000 (Tue, 23 May 2017)
New Revision: 51895

Modified:
   data/CVE/list
Log:
Process a couple of more NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-05-23 19:04:24 UTC (rev 51894)
+++ data/CVE/list       2017-05-23 19:15:38 UTC (rev 51895)
@@ -14907,7 +14907,7 @@
        NOTE: https://github.com/swiftmailer/swiftmailer/issues/844
        NOTE: Fixed by 
https://github.com/swiftmailer/swiftmailer/commit/e6ccf40d856af9598b76eb313b215eed25ae9e86
 CVE-2016-10073 (The from method in library/core/class.email.php in Vanilla 
Forums ...)
-       TODO: check
+       NOT-FOR-US: Vanilla Forums
 CVE-2016-10072 (** DISPUTED ** WampServer 3.0.6 has two files called 
'wampmanager.exe' ...)
        NOT-FOR-US: WampServer
 CVE-2016-10044 (The aio_mount function in fs/aio.c in the Linux kernel before 
4.7.7 ...)
@@ -40726,7 +40726,7 @@
        NOTE: https://github.com/ADOdb/ADOdb/commit/ecb93d8c1
        NOTE: Vulnerable file is shipped as an example only
 CVE-2016-4854 (Cross-site request forgery (CSRF) vulnerability in L-04D 
firmware ...)
-       TODO: check
+       NOT-FOR-US: L-04D firmware
 CVE-2016-4853 (AKABEi SOFT2 games allow remote attackers to execute arbitrary 
OS ...)
        NOT-FOR-US: AKABEi SOFT2
 CVE-2016-4852 (YoruFukurou (NightOwl) before 2.85 relies on support for emoji 
...)
@@ -50164,7 +50164,7 @@
 CVE-2016-1877
        RESERVED
 CVE-2016-1876 (The backend service process in Lenovo Solution Center (aka LSC) 
before ...)
-       TODO: check
+       NOT-FOR-US: Lenovo
 CVE-2016-1875
        RESERVED
 CVE-2016-1874
@@ -57464,7 +57464,7 @@
 CVE-2015-8100 (The net-snmp package in OpenBSD through 5.8 uses 0644 
permissions for ...)
        - net-snmp <not-affected> (Specific to packaging in OpenBSD)
 CVE-2015-8089 (The GPU driver in Huawei P7 phones with software P7-L00 before 
...)
-       TODO: check
+       NOT-FOR-US: Huawei
 CVE-2015-8088 (Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 
phones ...)
        NOT-FOR-US: Huawei
 CVE-2015-8087 (Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software 
before ...)
@@ -61833,7 +61833,7 @@
        - openafs 1.6.13-1
        NOTE: http://www.openafs.org/pages/security/OPENAFS-SA-2015-006.txt
 CVE-2015-6586 (The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices 
with ...)
-       TODO: check
+       NOT-FOR-US: Huawei
 CVE-2015-6585
        RESERVED
 CVE-2015-6584 (Cross-site scripting (XSS) vulnerability in the DataTables 
plugin ...)
@@ -64164,7 +64164,7 @@
 CVE-2015-5683
        RESERVED
 CVE-2015-5682 (upload.php in the Powerplay Gallery plugin 3.3 for WordPress 
allows ...)
-       TODO: check
+       NOT-FOR-US: Powerplay Gallery plugin for WordPress
 CVE-2015-5681 (Unrestricted file upload vulnerability in upload.php in the 
Powerplay ...)
        NOT-FOR-US: Powerplay Gallery plugin for WordPress
 CVE-2015-5680
@@ -64336,7 +64336,7 @@
 CVE-2015-5610 (The RSM (aka RSMWinService) service in SolarWinds N-Able 
N-Central ...)
        NOT-FOR-US: SolarWinds
 CVE-2015-5609 (Absolute path traversal vulnerability in the Image Export 
plugin 1.1 ...)
-       TODO: check
+       NOT-FOR-US: Image Export plugin for WordPress
 CVE-2015-5608
        RESERVED
 CVE-2015-5606


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to