[Secure-testing-commits] r15511 - data/CVE

Federico Ceratto federico-guest at alioth.debian.org
Sat Oct 23 17:30:30 UTC 2010 

Author: federico-guest
Date: 2010-10-23 17:30:28 +0000 (Sat, 23 Oct 2010)
New Revision: 15511

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-10-23 15:36:48 UTC (rev 15510)
+++ data/CVE/list	2010-10-23 17:30:28 UTC (rev 15511)
@@ -7,21 +7,21 @@
 	- flash-kernel 2.33 (low)
 	[lenny] - flash-kernel <no-dsa> (Minor issue)
 CVE-2010-4050 (Opera before 10.63 allows remote attackers to cause a denial of ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-4049 (Opera before 10.63 allows remote attackers to cause a denial of ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-4048 (Opera before 10.63 allows user-assisted remote web servers to cause a ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-4047 (Opera before 10.63 does not properly select the security context of ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-4046 (Opera before 10.63 does not properly verify the origin of video ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-4045 (Opera before 10.63 does not properly restrict web script in ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-4044 (Opera before 10.63 does not ensure that the portion of a URL shown in ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-4043 (Opera before 10.63 does not prevent interpretation of a cross-origin ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2010-4042 (Google Chrome before 7.0.517.41 does not properly handle element maps, ...)
 	- webkit <undetermined>
 	- chromium-browser <undetermined>
@@ -662,7 +662,7 @@
 CVE-2010-3764
 	RESERVED
 CVE-2010-3763 (Cross-site scripting (XSS) vulnerability in core/summary_api.php in ...)
-	TODO: check
+	NOT-FOR-US: MantisBT
 CVE-2010-3762 (ISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not ...)
 	- bind9 <unfixed> (bug #599515)
 	NOTE: http://ftp.isc.org/isc/bind9/9.7.2-P2/RELEASE-NOTES-BIND-9.7.2-P2.html
@@ -1891,7 +1891,7 @@
 	NOTE: assigned to linux-2.6, but claimed not a problem: http://www.openwall.com/lists/oss-security/2010/09/15/2
 	NOTE: will probably get rejected
 CVE-2010-3291 (Cross-site scripting (XSS) vulnerability in HP AssetCenter 5.0x ...)
-	TODO: check
+	NOT-FOR-US: HP AssetCenter
 CVE-2010-3290
 	RESERVED
 CVE-2010-3289

More information about the Secure-testing-commits mailing list