[Secure-testing-commits] r56387 - data/CVE

Moritz Muehlenhoff Tue, 03 Oct 2017 14:35:49 -0700

Author: jmm
Date: 2017-10-03 21:35:33 +0000 (Tue, 03 Oct 2017)
New Revision: 56387


Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-10-03 21:30:29 UTC (rev 56386)
+++ data/CVE/list       2017-10-03 21:35:33 UTC (rev 56387)
@@ -3,9 +3,9 @@
 CVE-2017-15010 (A ReDoS (regular expression denial of service) flaw was found 
in the ...)
        TODO: check
 CVE-2017-15009 (PRTG Network Monitor version 17.3.33.2830 is vulnerable to 
reflected ...)
-       TODO: check
+       NOT-FOR-US: PRTG Network Monitor
 CVE-2017-15008 (PRTG Network Monitor version 17.3.33.2830 is vulnerable to 
stored ...)
-       TODO: check
+       NOT-FOR-US: PRTG Network Monitor
 CVE-2017-15007
        RESERVED
 CVE-2017-15006
@@ -6232,15 +6232,15 @@
 CVE-2017-12823
        RESERVED
 CVE-2017-12822 (Remote enabling and disabling admin interface in Gemalto's 
HASP SRM, ...)
-       TODO: check
+       NOT-FOR-US: Gemalto
 CVE-2017-12821 (Memory corruption in Gemalto's HASP SRM, Sentinel HASP and 
Sentinel ...)
-       TODO: check
+       NOT-FOR-US: Gemalto
 CVE-2017-12820 (Arbitrary memory read from controlled memory pointer in 
Gemalto's HASP ...)
-       TODO: check
+       NOT-FOR-US: Gemalto
 CVE-2017-12819 (Remote manipulations with language pack updater lead to 
NTLM-relay ...)
-       TODO: check
+       NOT-FOR-US: Gemalto
 CVE-2017-12818 (Stack overflow in custom XML-parser in Gemalto's HASP SRM, 
Sentinel ...)
-       TODO: check
+       NOT-FOR-US: Gemalto
 CVE-2017-12817 (In Kaspersky Internet Security for Android 11.12.4.1622, some 
of the ...)
        NOT-FOR-US: Kaspersky Internet Security for Android
 CVE-2017-12816 (In Kaspersky Internet Security for Android 11.12.4.1622, some 
of ...)
@@ -12951,7 +12951,7 @@
        [wheezy] - libstruts1.2-java <not-affected> (vulnerable code not 
present)
        NOTE: https://struts.apache.org/docs/s2-051.html
 CVE-2017-9792 (In Apache Impala (incubating) before 2.10.0, a malicious user 
with ...)
-       TODO: check
+       NOT-FOR-US: Apache Impala
 CVE-2017-9791 (The Struts 1 plugin in Apache Struts 2.3.x might allow remote 
code ...)
        - libstruts1.2-java <not-affected> (Vulnerable code not present)
        NOTE: Issue is specific to Struts 2.x.
@@ -38995,7 +38995,7 @@
 CVE-2017-1542
        RESERVED
 CVE-2017-1541 (A flaw in the AIX 5.3, 6.1, 7.1, and 7.2 JRE/SDK installp and 
updatep ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2017-1540
        RESERVED
 CVE-2017-1539 (IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to 
...)
@@ -39825,7 +39825,7 @@
 CVE-2017-1127 (IBM Rational DOORS Next Generation 4.0, 5.0 and 6.0 is 
vulnerable to ...)
        NOT-FOR-US: IBM
 CVE-2017-1126 (IBM WebSphere Message Broker (IBM Integration Bus 9.0 and 10.0) 
could ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2017-1125 (IBM Cognos Analytics 10.1 and 10.2 could allow a local user to 
craft a ...)
        NOT-FOR-US: IBM
 CVE-2017-1124 (IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a 
local ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r56387 - data/CVE

Reply via email to