[Secure-testing-commits] r15254 - data/CVE

Federico Ceratto federico-guest at alioth.debian.org
Thu Sep 2 19:30:33 UTC 2010 

Author: federico-guest
Date: 2010-09-02 19:30:28 +0000 (Thu, 02 Sep 2010)
New Revision: 15254

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-09-01 21:14:36 UTC (rev 15253)
+++ data/CVE/list	2010-09-02 19:30:28 UTC (rev 15254)
@@ -9,27 +9,27 @@
 CVE-2010-3198
 	RESERVED
 CVE-2010-3197 (IBM DB2 9.7 before FP2 does not perform the expected access control on ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2010-3196 (IBM DB2 9.7 before FP2, when AUTO_REVAL is IMMEDIATE, allows remote ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2010-3195 (Unspecified vulnerability in IBM DB2 9.1 before FP9, 9.5 before FP6, ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2010-3194 (The DB2DART program in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2010-3193 (Unspecified vulnerability in the DB2STST program in IBM DB2 9.1 before ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2010-3192
 	RESERVED
 CVE-2010-3191 (Untrusted search path vulnerability in Adobe Captivate 5.0.0.596, and ...)
-	TODO: check
+	NOT-FOR-US: Adobe Captivate
 CVE-2010-3190 (Untrusted search path vulnerability in ATL MFC Trace Tool ...)
-	TODO: check
+	NOT-FOR-US: ATL MFC Trace Tool
 CVE-2010-3189 (The extSetOwner function in the UfProxyBrowserCtrl ActiveX control ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro Internet Security Pro
 CVE-2010-3188 (SQL injection vulnerability in search.aspx in BugTracker.NET 3.4.3 and ...)
-	TODO: check
+	NOT-FOR-US: BugTracker.NET
 CVE-2010-3187 (Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote ...)
-	TODO: check
+	NOT-FOR-US: IBM AIX
 CVE-2010-3186 (IBM WebSphere Application Server (WAS) 7.x before 7.0.0.13, and ...)
 	TODO: check
 CVE-2010-3185
@@ -414,7 +414,7 @@
 CVE-2010-3036
 	RESERVED
 CVE-2010-3035 (Cisco IOS XR 3.4.0 through 3.9.1, when BGP is enabled, does not ...)
-	TODO: check
+	NOT-FOR-US: Cisco IOS XR
 CVE-2010-3034
 	RESERVED
 CVE-2010-3033
@@ -476,11 +476,11 @@
 CVE-2010-3003
 	RESERVED
 CVE-2010-3002 (Unspecified vulnerability in RealNetworks RealPlayer 11.0 through 11.1 ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2010-3001 (Unspecified vulnerability in an ActiveX control in the Internet ...)
-	TODO: check
+	NOT-FOR-US: Internet Explorer
 CVE-2010-3000 (Multiple integer overflows in the ParseKnownType function in ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2010-2999
 	RESERVED
 CVE-2010-2998
@@ -488,7 +488,7 @@
 CVE-2010-2997
 	RESERVED
 CVE-2010-2996 (Array index error in RealNetworks RealPlayer 11.0 through 11.1 on ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2010-2991 (The IICAClient interface in the ICAClient library in the ICA Client ...)
 	NOT-FOR-US: Citrix ICA Client
 CVE-2010-2990 (Citrix Online Plug-in for Windows for XenApp & XenDesktop before 11.2, ...)
@@ -1250,7 +1250,7 @@
 	NOTE: http://git.gnome.org/browse/vte/commit/?id=58bc3a942f198a1a8788553ca72c19d7c1702b74
 	NOTE: http://git.gnome.org/browse/vte/commit/?id=8b971a7b2c59902914ecbbc3915c45dd21530a91
 CVE-2010-2712 (Unspecified vulnerability in Software Distributor (sd) in HP HP-UX ...)
-	TODO: check
+	NOT-FOR-US: Software Distributor in HP HP-UX
 CVE-2010-2711 (Unspecified vulnerability in the HP MagCloud app before 1.0.5 for the ...)
 	NOT-FOR-US: HP MagCloud app
 CVE-2010-2710 (Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) ...)
@@ -1853,7 +1853,7 @@
 CVE-2010-2475
 	RESERVED
 CVE-2010-2474 (JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise ...)
-	TODO: check
+	NOT-FOR-US: JBoss Enterprise
 CVE-2010-2470 (Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6.1 and 3.7 through ...)
 	- bugzilla <not-affected> (Only affects 3.5 to 3.7)
 CVE-2010-2476 [syscp open_basedir bypassing]
@@ -2094,7 +2094,7 @@
 CVE-2010-2364 (Cross-site scripting (XSS) vulnerability in Free CGI Moo moobbs before ...)
 	TODO: check
 CVE-2010-2363 (The IPv6 Unicast Reverse Path Forwarding (RPF) implementation on the ...)
-	TODO: check
+	NOT-FOR-US: SEIL/X1, SEIL/X2, and SEIL/B1 routers
 CVE-2010-2362 (Winny 2.0b7.1 and earlier does not properly process node information, ...)
 	NOT-FOR-US: Winny
 CVE-2010-2361 (Winny 2.0b7.1 and earlier does not properly process BBS information, ...)
@@ -3510,7 +3510,7 @@
 CVE-2010-1819
 	RESERVED
 CVE-2010-1818 (The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple ...)
-	TODO: check
+	NOT-FOR-US: QuickTime
 CVE-2010-1817
 	RESERVED
 CVE-2010-1816
@@ -8677,9 +8677,9 @@
 CVE-2010-0118 (Bournal before 1.4.1 allows local users to overwrite arbitrary files ...)
 	NOT-FOR-US: Bournal
 CVE-2010-0117 (RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2010-0116 (Integer overflow in RealNetworks RealPlayer 11.0 through 11.1 and ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2009-4585 (UranyumSoft Listing Service stores sensitive information under the web ...)
 	NOT-FOR-US: UranyumSoft Listing Service
 CVE-2009-4584 (admin.php in dB Masters Multimedia Links Directory 3.1.3 allows remote ...)

More information about the Secure-testing-commits mailing list