Author: jmm
Date: 2017-12-01 21:36:43 +0000 (Fri, 01 Dec 2017)
New Revision: 58196
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-01 21:10:21 UTC (rev 58195)
+++ data/CVE/list 2017-12-01 21:36:43 UTC (rev 58196)
@@ -1356,19 +1356,19 @@
CVE-2017-16995
RESERVED
CVE-2016-10702 (Pebble Smartwatch devices through 4.3 mishandle UUID storage,
which ...)
- TODO: check
+ NOT-FOR-US: Pebble
CVE-2016-10701 (In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF
issue exists ...)
NOT-FOR-US: Hitachi Vantara Pentaho BA Platform
CVE-2017-1001004 (typed-function before 0.10.6 had an arbitrary code execution
in the ...)
- TODO: check
+ NOT-FOR-US: typed-function
CVE-2017-1001003 (math.js before 3.17.0 had an issue where private properties
such as a ...)
- TODO: check
+ NOT-FOR-US: math.js
CVE-2017-1001002 (math.js before 3.17.0 had an arbitrary code execution in the
...)
- TODO: check
+ NOT-FOR-US: math.js
CVE-2017-1000214 (GitPHP by xiphux is vulnerable to OS Command Injections ...)
- TODO: check
+ NOT-FOR-US: GitPHP
CVE-2017-1000207 (A vulnerability in Swagger-Parser's version <= 1.0.30 and
Swagger ...)
- TODO: check
+ NOT-FOR-US: Swagger-Parser
CVE-2017-1000159 (Command injection in evince 3.24.8 via filename when
printing to PDF ...)
- evince 3.25.92-1
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=784947
@@ -2238,7 +2238,7 @@
CVE-2017-16963
RESERVED
CVE-2017-16962 (The WebMail components (Crystal, pronto, and pronto4) in
CommuniGate ...)
- TODO: check
+ NOT-FOR-US: CommuniGate Pro
CVE-2017-16961 (A SQL injection vulnerability in core/inc/auto-modules.php in
BigTree ...)
NOT-FOR-US: BigTree CMS
CVE-2017-16960 (TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote
...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
