Author: jmm
Date: 2017-10-03 09:20:27 +0000 (Tue, 03 Oct 2017)
New Revision: 56377
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-03 09:19:21 UTC (rev 56376)
+++ data/CVE/list 2017-10-03 09:20:27 UTC (rev 56377)
@@ -3,7 +3,7 @@
CVE-2017-14996
RESERVED
CVE-2017-14995 (The Management Console in WSO2 Application Server 5.3.0, WSO2
Business ...)
- TODO: check
+ NOT-FOR-US: WSO2 Application Server
CVE-2017-14994 (ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows
remote ...)
TODO: check
CVE-2017-14993
@@ -14,7 +14,7 @@
- linux 4.13.4-1
NOTE: Fixed by:
https://git.kernel.org/linus/3e0097499839e0fe3af380410eababe5a47c4cf9
CVE-2017-14758 (OpenText Document Sciences xPression (formerly EMC Document
Sciences ...)
- TODO: check
+ NOT-FOR-US: EMC
CVE-2017-14990 (WordPress 4.8.2 stores cleartext wp_signups.activation_key
values (but ...)
- wordpress <unfixed>
NOTE: https://core.trac.wordpress.org/ticket/38474
@@ -413,7 +413,7 @@
NOTE:
https://nodejs.org/en/blog/vulnerability/september-2017-path-validation/
NOTE: https://twitter.com/nodejs/status/913131152868876288
CVE-2017-14848 (WPHRM Human Resource Management System for WordPress 1.0
allows SQL ...)
- TODO: check
+ NOT-FOR-US: Wordpress plugin
CVE-2017-14847 (Mojoomla WPAMS Apartment Management System for WordPress
allows SQL ...)
NOT-FOR-US: Mojoomla WPAMS Apartment Management System for WordPress
CVE-2017-14846 (Mojoomla Hospital Management System for WordPress allows SQL
Injection ...)
@@ -563,13 +563,13 @@
CVE-2017-14774
RESERVED
CVE-2017-14773 (Skybox Manager Client Application prior to 8.5.501 is prone to
an ...)
- TODO: check
+ NOT-FOR-US: Skybox Manager Client Application
CVE-2017-14772 (Skybox Manager Client Application is prone to information
disclosure ...)
- TODO: check
+ NOT-FOR-US: Skybox Manager Client Application
CVE-2017-14771 (Skybox Manager Client Application prior to 8.5.501 is prone to
an ...)
- TODO: check
+ NOT-FOR-US: Skybox Manager Client Application
CVE-2017-14770 (Skybox Manager Client Application prior to 8.5.501 is prone to
an ...)
- TODO: check
+ NOT-FOR-US: Skybox Manager Client Application
CVE-2017-14769
RESERVED
CVE-2017-14768
@@ -6718,9 +6718,9 @@
NOTE: https://github.com/ImageMagick/ImageMagick/issues/542
NOTE:
https://github.com/ImageMagick/ImageMagick/commit/78d4c5db50fbab0b4beb69c46c6167f2c6513dec
CVE-2017-12639 (Stack based buffer overflow in Ipswitch IMail server up to and
...)
- TODO: check
+ NOT-FOR-US: Ipswitch IMail
CVE-2017-12638 (Stack based buffer overflow in Ipswitch IMail server up to and
...)
- TODO: check
+ NOT-FOR-US: Ipswitch IMail
CVE-2017-12637 (Directory traversal vulnerability in ...)
NOT-FOR-US: SAP
CVE-2017-12636
@@ -9726,11 +9726,11 @@
NOTE: https://nodejs.org/en/blog/release/v6.11.1/
NOTE: https://nodejs.org/en/blog/release/v4.8.4/
CVE-2017-11498 (Buffer overflow in hasplms in Gemalto ACC (Admin Control
Center), all ...)
- TODO: check
+ NOT-FOR-US: Gemalto ACC
CVE-2017-11497 (Stack buffer overflow in hasplms in Gemalto ACC (Admin Control
...)
- TODO: check
+ NOT-FOR-US: Gemalto ACC
CVE-2017-11496 (Stack buffer overflow in hasplms in Gemalto ACC (Admin Control
...)
- TODO: check
+ NOT-FOR-US: Gemalto ACC
CVE-2017-11495 (PHICOMM K2(PSG1218) devices V22.5.11.5 and earlier allow ...)
NOT-FOR-US: PHICOMM
CVE-2017-11494 (SQL injection vulnerability in SOL.Connect ISET-mpp meter
1.2.4.2 and ...)
@@ -19548,9 +19548,9 @@
CVE-2017-8049
RESERVED
CVE-2017-8048 (In Cloud Foundry capi-release versions 1.33.0 and later, prior
to ...)
- TODO: check
+ NOT-FOR-US: Cloud Foundry
CVE-2017-8047 (In Cloud Foundry router routing-release all versions prior to
v0.163.0 ...)
- TODO: check
+ NOT-FOR-US: Cloud Foundry
CVE-2017-8046
RESERVED
CVE-2017-8045
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
