[Secure-testing-commits] r15356 - data/CVE

Federico Ceratto federico-guest at alioth.debian.org
Mon Sep 20 10:44:40 UTC 2010 

Author: federico-guest
Date: 2010-09-20 10:44:40 +0000 (Mon, 20 Sep 2010)
New Revision: 15356

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-09-20 10:34:37 UTC (rev 15355)
+++ data/CVE/list	2010-09-20 10:44:40 UTC (rev 15356)
@@ -40,7 +40,7 @@
 CVE-2010-3420 (Cross-site scripting (XSS) vulnerability in Products_Results.php in ...)
 	NOT-FOR-US: PowerStore
 CVE-2010-3419 (Multiple PHP remote file inclusion vulnerabilities in Haudenschilt ...)
-	TODO: check
+	NOT-FOR-US: Haudenschilt Family Connections CMS
 CVE-2010-3418 (Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media ...)
 	NOT-FOR-US: NetArt Media Car Portal
 CVE-2010-3417 (Google Chrome before 6.0.472.59 does not prompt the user before ...)
@@ -72,9 +72,9 @@
 CVE-2010-3404 (Multiple SQL injection vulnerabilities in eshtery CMS (aka ...)
 	NOT-FOR-US: eshtery CMS
 CVE-2010-3403 (Untrusted search path vulnerability in Qualcomm eXtensible Diagnostic ...)
-	TODO: check
+	NOT-FOR-US: Qualcomm eXtensible Diagnostic Monitor
 CVE-2010-3402 (Untrusted search path vulnerability in IDM Computer Solutions ...)
-	TODO: check
+	NOT-FOR-US: UltraEdit
 CVE-2010-3401
 	RESERVED
 CVE-2010-XXXX [python accept() implementation in async core is broken]
@@ -88,11 +88,11 @@
 CVE-2010-3399 (The js_InitRandom function in the JavaScript implementation in Mozilla ...)
 	TODO: check
 CVE-2010-3398 (Unspecified vulnerability in the webcontainer implementation in IBM ...)
-	TODO: check
+	NOT-FOR-US: IBM Lotus Sametime Connect
 CVE-2010-3397 (Untrusted search path vulnerability in PGP Desktop 9.9.0 Build 397, ...)
-	TODO: check
+	NOT-FOR-US: PGP Desktop
 CVE-2010-3396 (Buffer overflow in kavfm.sys in Kingsoft Antivirus 2010.04.26.648 and ...)
-	TODO: check
+	NOT-FOR-US: Kingsoft Antivirus
 CVE-2010-3395
 	RESERVED
 CVE-2010-3394
@@ -238,9 +238,9 @@
 CVE-2010-3324
 	RESERVED
 CVE-2010-3323 (Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session ...)
-	TODO: check
+	NOT-FOR-US: Splunk
 CVE-2010-3322 (The XML parser in Splunk 4.0.0 through 4.1.4 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Splunk
 CVE-2010-3321
 	RESERVED
 CVE-2010-3320 (Open redirect vulnerability in IBM Records Manager (RM) 4.5.x before ...)
@@ -1219,7 +1219,7 @@
 	{DSA-2107-1}
 	- couchdb 0.11.0-2 (low; bug #594412)
 CVE-2010-2952 (Apache Traffic Server before 2.0.1, and 2.1.x before 2.1.2-unstable, ...)
-	TODO: check
+	NOT-FOR-US: Apache Traffic Server
 CVE-2010-2951 [squid3 DoS via TCP DNS request]
 	RESERVED
 	- squid3 <unfixed>
@@ -2261,7 +2261,7 @@
 CVE-2010-2581
 	RESERVED
 CVE-2010-2580 (The SMTP service (MESMTPC.exe) in MailEnable 3.x and 4.25 does not ...)
-	TODO: check
+	NOT-FOR-US: MailEnable
 CVE-2010-2579
 	RESERVED
 CVE-2010-2578
@@ -2784,7 +2784,7 @@
 CVE-2010-2367
 	RESERVED
 CVE-2010-2366 (Cross-site scripting (XSS) vulnerability in futomi CGI Cafe Access ...)
-	TODO: check
+	NOT-FOR-US: CGI Cafe Access Analyzer
 CVE-2010-2365 (Cross-site scripting (XSS) vulnerability in Free CGI Moo moobbs2 ...)
 	NOT-FOR-US: Free CGI Moo moobbs2
 CVE-2010-2364 (Cross-site scripting (XSS) vulnerability in Free CGI Moo moobbs before ...)
@@ -7378,7 +7378,7 @@
 CVE-2010-0821 (Unspecified vulnerability in Microsoft Office Excel 2002 SP3, 2003 ...)
 	NOT-FOR-US: Microsoft
 CVE-2010-0820 (Heap-based buffer overflow in the Local Security Authority Subsystem ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2010-0819 (Unspecified vulnerability in the Windows OpenType Compact Font Format ...)
 	NOT-FOR-US: Microsoft
 CVE-2010-0818 (The MPEG-4 codec in the Windows Media codecs in Microsoft Windows XP ...)
@@ -9416,13 +9416,13 @@
 	- puppet 0.25.4-2
 	[lenny] - puppet <no-dsa> (Minor issue)
 CVE-2010-0155 (CRLF injection vulnerability in load.php in the Local Management ...)
-	TODO: check
+	NOT-FOR-US: IBM Proventia Network Mail Security System
 CVE-2010-0154 (Directory traversal vulnerability in sla/index.php in the Local ...)
-	TODO: check
+	NOT-FOR-US: IBM Proventia Network Mail Security System
 CVE-2010-0153 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
-	TODO: check
+	NOT-FOR-US: IBM Proventia Network Mail Security System
 CVE-2010-0152 (Multiple cross-site scripting (XSS) vulnerabilities in the Local ...)
-	TODO: check
+	NOT-FOR-US: IBM Proventia Network Mail Security System
 CVE-2010-0151 (The Cisco Firewall Services Module (FWSM) 4.0 before 4.0(8), as used ...)
 	NOT-FOR-US: Cisco
 CVE-2010-0150 (Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security ...)

More information about the Secure-testing-commits mailing list