Author: jmm
Date: 2017-07-17 15:34:44 +0000 (Mon, 17 Jul 2017)
New Revision: 53570
Modified:
data/CVE/list
Log:
audacity n/a
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-17 12:25:55 UTC (rev 53569)
+++ data/CVE/list 2017-07-17 15:34:44 UTC (rev 53570)
@@ -736,19 +736,19 @@
CVE-2017-1000012 (MySQL Dumper version 1.24 is vulnerable to stored XSS when
displaying ...)
TODO: check
CVE-2017-1000011 (MyWebSQL version 3.6 is vulnerable to stored XSS in the
database ...)
- TODO: check
+ NOT-FOR-US: MyWebSQL
CVE-2017-1000010 (Audacity version 2.1.2 is vulnerable to Dll HIjacking in the
...)
- TODO: check
+ - audacity <not-affected> (Specific to Windows packaging)
CVE-2017-1000009 (Akeneo PIM CE and EE <1.6.6, <1.5.15, <1.4.28 are
vulnerable to shell ...)
- TODO: check
+ NOT-FOR-US: Akeneo PIM
CVE-2017-1000008 (Chyrp Lite version 2016.04 is vulnerable to a CSRF in the
user ...)
- TODO: check
+ NOT-FOR-US: Chyrp Lite
CVE-2017-1000007 (txAWS (all current versions) fail to perform complete
certificate ...)
- TODO: check
+ NOT-FOR-US: txAWS
CVE-2017-1000006 (Plotly, Inc. plotly.js versions prior to 1.16.0 are
vulnerable to an ...)
TODO: check
CVE-2017-1000005 (PHPMiniAdmin version 1.9.160630 is vulnerable to stored XSS
in the ...)
- TODO: check
+ NOT-FOR-US: PHPMiniAdmin
CVE-2017-1000004 (ATutor versions 2.2.1 and earlier are vulnerable to a SQL
injection ...)
NOT-FOR-US: ATutor
CVE-2017-1000003 (ATutor versions 2.2.1 and earlier are vulnerable to a
incorrect access ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
