[Secure-testing-commits] r15725 - data/CVE

Federico Ceratto federico-guest at alioth.debian.org
Tue Dec 21 20:44:57 UTC 2010 

Author: federico-guest
Date: 2010-12-21 20:44:56 +0000 (Tue, 21 Dec 2010)
New Revision: 15725

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-12-21 18:36:50 UTC (rev 15724)
+++ data/CVE/list	2010-12-21 20:44:56 UTC (rev 15725)
@@ -1,9 +1,9 @@
 CVE-2010-4558 (phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and ...)
-	TODO: check
+	NOT-FOR-US: phpMyFAQ
 CVE-2010-4557 (Buffer overflow in the lm_tcp service in Invensys Wonderware InBatch ...)
-	TODO: check
+	NOT-FOR-US: Invensys Wonderware InBatch
 CVE-2010-4556 (Stack-based buffer overflow in the SapThemeRepository ActiveX control ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver Business Client
 CVE-2010-XXXX
 	- opensc <unfixed> (bug #607427)
 CVE-2010-4555
@@ -148,9 +148,9 @@
 CVE-2010-4515 (Cross-site scripting (XSS) vulnerability in Citrix Web Interface 5.0, ...)
 	NOT-FOR-US: Citrix Web Interface
 CVE-2010-4514 (Cross-site scripting (XSS) vulnerability in Install/InstallWizard.aspx ...)
-	TODO: check
+	NOT-FOR-US: DotNetNuke
 CVE-2010-4513 (Multiple cross-site scripting (XSS) vulnerabilities in Zimplit CMS ...)
-	TODO: check
+	NOT-FOR-US: Zimplit CMS
 CVE-2010-4512 (Cobbler before 2.0.4 uses an incorrect umask value, which allows local ...)
 	- cobbler <itp> (bug #545583)
 CVE-2010-4511 (Unspecified vulnerability in Movable Type 4.x before 4.35 and 5.x ...)
@@ -188,17 +188,17 @@
 CVE-2010-4506
 	RESERVED
 CVE-2010-4505 (Multiple SQL injection vulnerabilities in login.php in Injader 2.4.4, ...)
-	TODO: check
+	NOT-FOR-US: Injader
 CVE-2010-4504 (Multiple cross-site scripting (XSS) vulnerabilities in eSyndiCat ...)
-	TODO: check
+	NOT-FOR-US: eSyndiCat
 CVE-2010-4503 (SQL injection vulnerability in indexlight.php in Aigaion 1.3.4 allows ...)
-	TODO: check
+	NOT-FOR-US: Aigaion
 CVE-2010-4502 (Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite ...)
-	TODO: check
+	NOT-FOR-US: CA Internet Security Suite
 CVE-2010-4501 (IO::Socket::SSL Perl module 1.35, when verify_mode is not VERIFY_NONE, ...)
 	TODO: check
 CVE-2010-4500 (Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY ...)
-	TODO: check
+	NOT-FOR-US: MRCGIGUY FreeTicket
 CVE-2010-XXXX
 	- puppet 2.6.2-3
 CVE-2011-0025
@@ -260,7 +260,7 @@
 CVE-2010-4496
 	RESERVED
 CVE-2010-4495 (Unspecified vulnerability in the ActiveMatrix Runtime component in ...)
-	TODO: check
+	NOT-FOR-US: TIBCO ActiveMatrix
 CVE-2010-4494 (Double free vulnerability in Google Chrome before 8.0.552.215 allows ...)
 	- chromium-browser <undetermined>
 	- webkit <undetermined>
@@ -1211,7 +1211,7 @@
 CVE-2010-4116
 	RESERVED
 CVE-2010-4115 (HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, ...)
-	TODO: check
+	NOT-FOR-US: HP StorageWorks
 CVE-2010-4114
 	RESERVED
 CVE-2010-4113
@@ -1670,11 +1670,11 @@
 	- movabletype-opensource 4.3.5+dfsg-1 (bug #606311)
 	TODO: check
 CVE-2010-3920 (The Seiko Epson printer driver installers for LP-S9000 before 4.1.11 ...)
-	TODO: check
+	NOT-FOR-US: Seiko Epson printer driver
 CVE-2010-3919 (Fenrir Grani 4.5 and earlier does not prevent interaction between web ...)
-	TODO: check
+	NOT-FOR-US: Fenrir Grani
 CVE-2010-3918 (Fenrir Sleipnir 2.9.6 and earlier does not prevent interaction between ...)
-	TODO: check
+	NOT-FOR-US: Fenrir Sleipnir
 CVE-2010-3917
 	RESERVED
 CVE-2010-3916 (Unspecified vulnerability in JustSystems Ichitaro and Ichitaro ...)
@@ -5324,9 +5324,9 @@
 CVE-2010-2604
 	RESERVED
 CVE-2010-2603 (RIM BlackBerry Desktop Software 4.7 through 6.0 for PC, and 1.0 for ...)
-	TODO: check
+	NOT-FOR-US: RIM BlackBerry Desktop Software
 CVE-2010-2602 (Multiple buffer overflows in the PDF distiller component in the ...)
-	TODO: check
+	NOT-FOR-US: BlackBerry Enterprise Serve
 CVE-2010-2601 (Multiple buffer overflows in the PDF distiller in the Attachment ...)
 	NOT-FOR-US: BlackBerry Enterprise Server
 CVE-2010-2600 (Untrusted search path vulnerability in BlackBerry Desktop Software ...)
@@ -8220,7 +8220,7 @@
 CVE-2010-1509 (IrfanView before 4.27 does not properly handle an unspecified integer ...)
 	NOT-FOR-US: IrfanView
 CVE-2010-1508 (Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2010-1507 (WebYaST in yast2-webclient in SUSE Linux Enterprise (SLE) 11 on the ...)
 	NOT-FOR-US: YAST
 CVE-2010-1506 (The Google V8 bindings in Google Chrome before 4.1.249.1059 allow ...)

More information about the Secure-testing-commits mailing list