Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ec974384 by Salvatore Bonaccorso at 2018-04-18T21:05:45+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,11 +1,11 @@
CVE-2018-10193 (LogMeIn LastPass through 4.9.1 allows remote attackers to
cause a ...)
- TODO: check
+ NOT-FOR-US: LogMeIn LastPass
CVE-2018-10192 (IPVanish 3.0.11 for macOS suffers from a root privilege
escalation ...)
- TODO: check
+ NOT-FOR-US: IPVanish for macOS
CVE-2018-10191 (In versions of mruby up to and including 1.4.0, an integer
overflow ...)
TODO: check
CVE-2018-10190 (A vulnerability in London Trust Media Private Internet Access
(PIA) VPN ...)
- TODO: check
+ NOT-FOR-US: London Trust Media Private Internet Access (PIA) VPN Client
for Windows
CVE-2018-10189 (An issue was discovered in Mautic 1.x and 2.x before 2.13.0.
It is ...)
TODO: check
CVE-2018-10188
@@ -113,7 +113,7 @@ CVE-2018-10140
CVE-2018-10139
RESERVED
CVE-2018-10138 (The CATALooK.netStore module through 7.2.8 for DNN (formerly
...)
- TODO: check
+ NOT-FOR-US: DNN
CVE-2018-10137 (iScripts UberforX 2.2 has CSRF in the
"manage_settings" section of the ...)
NOT-FOR-US: iScripts UberforX
CVE-2018-10136 (iScripts UberforX 2.2 has Stored XSS in the
"manage_settings" section ...)
@@ -3175,7 +3175,7 @@ CVE-2018-8840
CVE-2018-8839
RESERVED
CVE-2018-8838 (A weakness in access controls in CENTUM CS 1000 all versions,
CENTUM ...)
- TODO: check
+ NOT-FOR-US: CENTUM
CVE-2018-8837
RESERVED
CVE-2018-8836 (Wago 750 Series PLCs with firmware version 10 and prior include
a ...)
@@ -6482,7 +6482,7 @@ CVE-2018-7544 (** DISPUTED ** A cross-protocol scripting
issue was discovered in
CVE-2018-7543 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: Wordpress plugin
CVE-2018-7539 (On Appear TV XC5000 and XC5100 devices with firmware 3.26.217,
it is ...)
- TODO: check
+ NOT-FOR-US: Appear TV XC5000 and XC5100 devices
CVE-2018-7538 (A SQL injection vulnerability in the tracker functionality of
Enalean ...)
NOT-FOR-US: Enalean Tuleap
CVE-2018-7542 (An issue was discovered in Xen 4.8.x through 4.10.x allowing
x86 PVH ...)
@@ -71621,7 +71621,7 @@ CVE-2017-2873
CVE-2017-2872
RESERVED
CVE-2017-2871 (Insufficient security checks exist in the recovery procedure
used by ...)
- TODO: check
+ NOT-FOR-US: Foscam C1 Indoor HD Camera
CVE-2017-2870 (An exploitable integer overflow vulnerability exists in the ...)
- gdk-pixbuf 2.36.10-1 (unimportant; bug #873787)
NOTE:
https://git.gnome.org/browse/gdk-pixbuf/commit/?id=31a6cff3dfc6944aad4612a9668b8ad39122e48b
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ec974384a1e04970e32c23ca3a3d484dcb145752
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ec974384a1e04970e32c23ca3a3d484dcb145752
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
