Author: jmm
Date: 2017-10-26 21:16:28 +0000 (Thu, 26 Oct 2017)
New Revision: 57004
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-26 21:14:44 UTC (rev 57003)
+++ data/CVE/list 2017-10-26 21:16:28 UTC (rev 57004)
@@ -8,7 +8,7 @@
CVE-2017-15918
RESERVED
CVE-2017-15917 (In Paessler PRTG Network Monitor 17.3.33.2830, it's possible
to create ...)
- TODO: check
+ NOT-FOR-US: Paessler PRTG Network Monitor
CVE-2017-15908 (In systemd 223 through 235, a remote DNS server can respond
with a ...)
TODO: check
CVE-2017-15919 (The ultimate-form-builder-lite plugin before 1.3.7 for
WordPress has ...)
@@ -24,7 +24,7 @@
CVE-2017-15912
RESERVED
CVE-2017-15911 (The Admin Console in Ignite Realtime Openfire Server before
4.1.7 ...)
- TODO: check
+ NOT-FOR-US: Ignite Realtime Openfire Server
CVE-2017-15910
RESERVED
CVE-2017-15909 (D-Link DGS-1500 Ax devices before 2.51B021 have a hardcoded
password, ...)
@@ -1243,7 +1243,7 @@
CVE-2017-15367
RESERVED
CVE-2017-15366 (Before Thornberry NDoc version 8.0, laptop clients and the
server have ...)
- TODO: check
+ NOT-FOR-US: Thornberry NDoc
CVE-2017-15365
RESERVED
CVE-2017-15364 (The foreach function in ext/ccsv.c in Ccsv 1.1.0 allows remote
...)
@@ -7294,11 +7294,9 @@
CVE-2017-13090
RESERVED
- wget <unfixed>
- TODO: check
CVE-2017-13089
RESERVED
- wget <unfixed>
- TODO: check
CVE-2017-13088 (Wi-Fi Protected Access (WPA and WPA2) that support 802.11v
allows ...)
{DSA-3999-1}
- wpa 2:2.4-1.1
@@ -23527,7 +23525,7 @@
CVE-2017-7733
RESERVED
CVE-2017-7732 (A reflected Cross-Site Scripting (XSS) vulnerability in
Fortinet ...)
- TODO: check
+ NOT-FOR-US: Fortinet
CVE-2017-7731 (A weak password recovery vulnerability in Fortinet FortiPortal
...)
NOT-FOR-US: Fortinet FortiPortal
CVE-2017-7730 (iSmartAlarm cube devices allow Denial of Service. Sending a SYN
flood ...)
@@ -24953,7 +24951,7 @@
CVE-2017-7342
RESERVED
CVE-2017-7341 (An OS Command Injection vulnerability in Fortinet FortiWLC
6.1-2 ...)
- TODO: check
+ NOT-FOR-US: Fortinet
CVE-2017-7340
RESERVED
CVE-2017-7339 (A Cross-Site Scripting vulnerability in Fortinet FortiPortal
versions ...)
@@ -24965,7 +24963,7 @@
CVE-2017-7336 (A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0
and ...)
NOT-FOR-US: Fortinet
CVE-2017-7335 (A Cross-Site Scripting (XSS) vulnerability in Fortinet FortiWLC
6.1-x ...)
- TODO: check
+ NOT-FOR-US: Fortinet
CVE-2017-7334
RESERVED
CVE-2017-7333
@@ -29037,7 +29035,7 @@
CVE-2017-5997 (The SAP Message Server HTTP daemon in SAP KERNEL 7.21-7.49
allows ...)
NOT-FOR-US: SAP Message Server
CVE-2017-5996 (The agent in Bomgar Remote Support 15.2.x before 15.2.3, 16.1.x
before ...)
- TODO: check
+ NOT-FOR-US: Bomgar Remote Support
CVE-2017-5995 (The NetApp ONTAP Select Deploy administration utility 2.0
through ...)
NOT-FOR-US: NetApp ONTAP Select Deploy administration utility
CVE-2017-14431 (Memory leak in Xen 3.3 through 4.8.x allows guest OS users to
cause a ...)
@@ -35680,7 +35678,7 @@
CVE-2017-3772
RESERVED
CVE-2017-3771 (System boot process is not adequately secured In Lenovo E95 and
...)
- TODO: check
+ NOT-FOR-US: Lenovo
CVE-2017-3770 (Privilege escalation vulnerability in LXCA versions earlier
than 1.3.2 ...)
NOT-FOR-US: Lenovo LXCA
CVE-2017-3769
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
