[Secure-testing-commits] r56397 - data/CVE

Wed, 04 Oct 2017 03:42:07 -0700 

Author: jmm
Date: 2017-10-04 10:41:43 +0000 (Wed, 04 Oct 2017)
New Revision: 56397

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-10-04 10:37:08 UTC (rev 56396)
+++ data/CVE/list       2017-10-04 10:41:43 UTC (rev 56397)
@@ -69,29 +69,29 @@
 CVE-2017-15012
        RESERVED
 CVE-2017-1000120 ([ERPNext][Frappe Version <= 7.1.27] SQL injection 
vulnerability in ...)
-       TODO: check
+       NOT-FOR-US: [ERPNext][Frappe
 CVE-2017-1000119 (October CMS build 412 is vulnerable to PHP code execution in 
the file ...)
-       TODO: check
+       NOT-FOR-US: October CMS
 CVE-2017-1000118 (Akka HTTP versions <= 10.0.5 Illegal Media Range in 
Accept Header ...)
-       TODO: check
+       NOT-FOR-US: Akka HTTP
 CVE-2017-1000114 (The Datadog Plugin stores an API key to access the Datadog 
service in ...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000113 (The Deploy to container Plugin stored passwords unencrypted 
as part of ...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000110 (Blue Ocean allows the creation of GitHub organization 
folders that are ...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000109 (The custom Details view of the Static Analysis Utilities 
based OWASP ...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000106 (Blue Ocean allows the creation of GitHub organization 
folders that are ...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000105 (The optional Run/Artifacts permission can be enabled by 
setting a Java ...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000104 (The Config File Provider Plugin is used to centrally manage 
...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000103 (The custom Details view of the Static Analysis Utilities 
based DRY ...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000102 (The Details view of some Static Analysis Utilities based 
plugins, was ...)
-       TODO: check
+       NOT-FOR-US: Jenkins plugin
 CVE-2017-1000098 (The net/http package's Request.ParseMultipartForm method 
starts ...)
        TODO: check
 CVE-2017-1000097 (On Darwin, user's trust preferences for root certificates 
were not ...)
@@ -2891,7 +2891,7 @@
        NOT-FOR-US: Asterisk GUI
        NOTE: Different from standard asterisk: 
https://wiki.asterisk.org/wiki/display/AST/Asterisk+GUI
 CVE-2017-14000 (An Improper Authentication issue was discovered in Ctek 
SkyRouter ...)
-       TODO: check
+       NOT-FOR-US: Ctek SkyRouter
 CVE-2017-13999
        RESERVED
 CVE-2017-13998


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to