[Secure-testing-commits] r15739 - data/CVE

James Strandboge jamie-guest at alioth.debian.org
Wed Dec 22 13:43:06 UTC 2010 

Author: jamie-guest
Date: 2010-12-22 13:43:04 +0000 (Wed, 22 Dec 2010)
New Revision: 15739

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-12-22 09:14:55 UTC (rev 15738)
+++ data/CVE/list	2010-12-22 13:43:04 UTC (rev 15739)
@@ -1,3 +1,21 @@
+CVE-2010-4587
+	NOT-FOR-US: Opera
+CVE-2010-4586
+	NOT-FOR-US: Opera
+CVE-2010-4585
+	NOT-FOR-US: Opera
+CVE-2010-4584
+	NOT-FOR-US: Opera
+CVE-2010-4583
+	NOT-FOR-US: Opera
+CVE-2010-4582
+	NOT-FOR-US: Opera
+CVE-2010-4581
+	NOT-FOR-US: Opera
+CVE-2010-4580
+	NOT-FOR-US: Opera
+CVE-2010-4579
+	NOT-FOR-US: Opera
 CVE-2010-XXXX [calibre XSS and file disclosure]
 	- calibre <unfixed>
 	TODO: check
@@ -153,11 +171,11 @@
 CVE-2010-4519
 	RESERVED
 CVE-2010-4518 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Safe Search plugin for WordPress
 CVE-2010-4517 (SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) ...)
-	TODO: check
+	NOT-FOR-US: Joomla!
 CVE-2010-4516 (Multiple cross-site scripting (XSS) vulnerabilities in the JXtended ...)
-	TODO: check
+	NOT-FOR-US: Joomla!
 CVE-2010-4515 (Cross-site scripting (XSS) vulnerability in Citrix Web Interface 5.0, ...)
 	NOT-FOR-US: Citrix Web Interface
 CVE-2010-4514 (Cross-site scripting (XSS) vulnerability in Install/InstallWizard.aspx ...)
@@ -498,9 +516,9 @@
 CVE-2010-4406 (Directory traversal vulnerability in gallery.php in Brunetton ...)
 	NOT-FOR-US: LittlePhpGallery
 CVE-2010-4405 (Cross-site scripting (XSS) vulnerability in the Yannick Gaultier ...)
-	TODO: check
+	NOT-FOR-US: Joomla!
 CVE-2010-4404 (SQL injection vulnerability in the Yannick Gaultier sh404SEF component ...)
-	TODO: check
+	NOT-FOR-US: Joomla!
 CVE-2010-4403 (The Register Plus plugin 3.5.1 and earlier for WordPress allows remote ...)
 	NOT-FOR-US: The Register Plus plugin for WordPress
 CVE-2010-4402 (Multiple cross-site scripting (XSS) vulnerabilities in wp-login.php in ...)
@@ -588,7 +606,7 @@
 CVE-2010-4366 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	NOT-FOR-US: Chameleon Social Networking
 CVE-2010-4365 (SQL injection vulnerability in JE Ajax Event Calendar ...)
-	TODO: check
+	NOT-FOR-US: Joomla!
 CVE-2010-4364 (DaDaBIK 4.3 beta3, when running in a case-sensitive environment, does ...)
 	NOT-FOR-US: DaDaBIK
 CVE-2010-4363 (Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY ...)
@@ -661,9 +679,9 @@
 CVE-2010-4341
 	RESERVED
 CVE-2010-4333
-	RESERVED
+	NOT-FOR-US: Pointter PHP Micro-Blogging Social Network
 CVE-2010-4332
-	RESERVED
+	NOT-FOR-US: Pointter PHP Content Management System
 CVE-2010-4331
 	RESERVED
 CVE-2010-4330 (Directory traversal vulnerability in includes/controller.php in Pulse ...)
@@ -818,7 +836,7 @@
 CVE-2010-4276
 	RESERVED
 CVE-2010-4275
-	RESERVED
+	NOT-FOR-US: Radius Manager
 CVE-2010-4274 (reset_diragent_keys in the Common agent in IBM Systems Director 6.2.0 ...)
 	NOT-FOR-US: IBM Systems Director
 CVE-2010-4273 (SQL injection vulnerability in imoveis.php in DescargarVista ACC ...)
@@ -1223,7 +1241,7 @@
 CVE-2010-4117
 	RESERVED
 CVE-2010-4116
-	RESERVED
+	NOT-FOR-US: HP StorageWorks Storage Mirroring
 CVE-2010-4115 (HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, ...)
 	NOT-FOR-US: HP StorageWorks
 CVE-2010-4114
@@ -5357,7 +5375,7 @@
 CVE-2010-2591
 	RESERVED
 CVE-2010-2590
-	RESERVED
+	NOT-FOR-US: ActiveX
 CVE-2010-2589
 	RESERVED
 CVE-2010-2588
@@ -7376,7 +7394,7 @@
 	- chromium-browser <not-affected> (windows-specific issue)
 	NOTE: This is the windows DLL planting attack
 CVE-2010-1804
-	RESERVED
+	NOT-FOR-US: Apple
 CVE-2010-1803 (Time Machine in Apple Mac OS X 10.6.x before 10.6.5 does not verify ...)
 	NOT-FOR-US: Apple Mac OS X
 CVE-2010-1802 (libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly ...)
@@ -12706,7 +12724,7 @@
 CVE-2010-0115
 	RESERVED
 CVE-2010-0114
-	RESERVED
+	NOT-FOR-US: Symantec Endpoint Protection
 CVE-2010-0113 (The Symantec Norton Mobile Security application 1.0 Beta for Android ...)
 	NOT-FOR-US: Symantec Norton Mobile Security application 1.0
 CVE-2010-0112 (Multiple SQL injection vulnerabilities in the Administrative Interface ...)
@@ -13444,7 +13462,7 @@
 CVE-2010-0040 (Integer overflow in ColorSync in Apple Safari before 4.0.5 on Windows, ...)
 	NOT-FOR-US: Apple Safari
 CVE-2010-0039
-	RESERVED
+	NOT-FOR-US: Apple
 CVE-2010-0038 (Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for ...)
 	NOT-FOR-US: Apple iPhone OS
 CVE-2010-0037 (Buffer overflow in Image RAW in Apple Mac OS X 10.5.8 and 10.6.2 ...)
@@ -20475,7 +20493,7 @@
 CVE-2009-2190 (launchd in Apple Mac OS X 10.5 before 10.5.8 allows remote attackers ...)
 	NOT-FOR-US: launchd in Apple Mac OS X
 CVE-2009-2189
-	RESERVED
+	NOT-FOR-US: Apple
 CVE-2009-2188 (Buffer overflow in ImageIO in Apple Mac OS X 10.5 before 10.5.8, and ...)
 	NOT-FOR-US: ImageIO in Apple Mac OS X
 CVE-2009-2187 (Multiple memory leaks in the (1) IP and (2) IPv6 multicast ...)

More information about the Secure-testing-commits mailing list