Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1d97aac7 by Moritz Muehlenhoff at 2018-04-04T21:37:22+02:00
NFUs
- - - - -
45f7bec1 by Moritz Muehlenhoff at 2018-04-04T21:38:28+02:00
Merge branch 'master' of
salsa.debian.org:security-tracker-team/security-tracker
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -124,7 +124,7 @@ CVE-2018-9249
CVE-2018-9248
RESERVED
CVE-2018-9247 (The upsql function in
\Lib\Lib\Action\Admin\DataAction.class.php in ...)
- TODO: check
+ NOT-FOR-US: Gxlcms QY
CVE-2018-9246
RESERVED
CVE-2018-9245
@@ -140,17 +140,17 @@ CVE-2018-9241
CVE-2018-9239
RESERVED
CVE-2018-9238 (proberv.php in Yahei-PHP Proberv 0.4.7 has XSS via the funName
...)
- TODO: check
+ NOT-FOR-US: Yahei-PHP Proberv
CVE-2018-9237 (iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in
the "Site ...)
- TODO: check
+ NOT-FOR-US: iScripts EasyCreate
CVE-2018-9236 (iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in
the "Site ...)
- TODO: check
+ NOT-FOR-US: iScripts EasyCreate
CVE-2018-9235 (iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the
query ...)
- TODO: check
+ NOT-FOR-US: iScripts SonicBB
CVE-2017-18256 (Brave Browser before 0.13.0 allows remote attackers to cause a
denial ...)
- TODO: check
+ NOT-FOR-US: Brave Browser
CVE-2016-10718 (Brave Browser before 0.13.0 allows a tab to close itself even
if the ...)
- TODO: check
+ NOT-FOR-US: Brave Browser
CVE-2018-9234 (GnuPG 2.2.4 and 2.2.5 does not enforce a configuration in which
key ...)
TODO: check
CVE-2018-9240 (ncmpc through 0.29 is prone to a NULL pointer dereference flaw.
If a ...)
@@ -60108,7 +60108,7 @@ CVE-2017-5705 (Multiple buffer overflows in kernel in
Intel Manageability Engine
CVE-2017-5704
RESERVED
CVE-2017-5703 (Configuration of SPI Flash in platforms based on multiple Intel
...)
- TODO: check
+ NOT-FOR-US: Intel
CVE-2017-5702
RESERVED
CVE-2017-5701 (Insecure platform configuration in system firmware for Intel
...)
@@ -65265,7 +65265,7 @@ CVE-2017-4030
CVE-2017-4029
REJECTED
CVE-2017-4028 (Maliciously misconfigured registry vulnerability in all
Microsoft ...)
- TODO: check
+ NOT-FOR-US: MacAfee
CVE-2017-4027
REJECTED
CVE-2017-4026
@@ -65377,7 +65377,7 @@ CVE-2017-3974
CVE-2017-3973
REJECTED
CVE-2017-3972 (Infrastructure-based foot printing vulnerability in the web
interface ...)
- TODO: check
+ NOT-FOR-US: McAfee
CVE-2017-3971
RESERVED
CVE-2017-3970
@@ -70160,9 +70160,9 @@ CVE-2017-2495 (An issue was discovered in certain Apple
products. iOS before 10.
CVE-2017-2494 (An issue was discovered in certain Apple products. macOS before
...)
NOT-FOR-US: Apple
CVE-2017-2493 (An issue was discovered in certain Apple products. iOS before
10.3 is ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2017-2492 (An issue was discovered in certain Apple products. iOS before
10.3 is ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2017-2491 (Use after free vulnerability in the String.replace method ...)
NOT-FOR-US: Apple Safari
CVE-2017-2490 (An issue was discovered in certain Apple products. iOS before
10.3 is ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/d0b51f99e2801e54a124c83f33f2ba58093413cb...45f7bec184eac47adad361ac9117519d5fea5331
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/d0b51f99e2801e54a124c83f33f2ba58093413cb...45f7bec184eac47adad361ac9117519d5fea5331
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
