[Secure-testing-commits] r16602 - data/CVE
James Strandboge
jamie-guest at alioth.debian.org
Wed Apr 27 13:02:29 UTC 2011
Author: jamie-guest
Date: 2011-04-27 13:02:10 +0000 (Wed, 27 Apr 2011)
New Revision: 16602
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-04-27 09:16:01 UTC (rev 16601)
+++ data/CVE/list 2011-04-27 13:02:10 UTC (rev 16602)
@@ -1,3 +1,27 @@
+CVE-2010-4801
+ NOT-FOR-US: BaconMap
+CVE-2010-4800
+ NOT-FOR-US: BaconMap
+CVE-2010-4799
+ NOT-FOR-US: Chipmunk Pwngame
+CVE-2010-4798
+ NOT-FOR-US: OrangeHRM
+CVE-2010-4797
+ NOT-FOR-US: Truworth Flex Timesheet
+CVE-2010-4796
+ NOT-FOR-US: PHPYun
+CVE-2010-4795
+ NOT-FOR-US: JS Calendar component for Joomla!
+CVE-2010-4794
+ NOT-FOR-US: JoomlaSeller JS Calendar component for Joomla!
+CVE-2010-4793
+ NOT-FOR-US: Site2Nite Auto e-Manager
+CVE-2010-4792
+ NOT-FOR-US: OPEN IT OverLook
+CVE-2010-4791
+ NOT-FOR-US: MG User-Fotoalbum module for PHP-Fusion
+CVE-2010-4790
+ NOT-FOR-US: FilterFTP
CVE-2011-1826
RESERVED
CVE-2011-XXXX [fail2ban: Insecure creating/writing to tmpfile]
@@ -231,7 +255,7 @@
CVE-2011-1726
RESERVED
CVE-2011-1725
- RESERVED
+ NOT-FOR-US: HP Network Automation
CVE-2011-1724
RESERVED
CVE-2011-1723 (Cross-site scripting (XSS) vulnerability in ...)
@@ -239,13 +263,13 @@
CVE-2011-1722 (Multiple SQL injection vulnerabilities in WEC Discussion Forum ...)
TODO: check
CVE-2011-1721 (Cross-site request forgery (CSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: WebJaxe
CVE-2011-1720
RESERVED
CVE-2011-1719
- RESERVED
+ NOT-FOR-US: ActiveX
CVE-2011-1718
- RESERVED
+ NOT-FOR-US: CA SiteMinder
CVE-2011-1716 (Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in ...)
NOT-FOR-US: Xymon
CVE-2009-5071 (Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has unknown ...)
@@ -1783,7 +1807,7 @@
CVE-2011-1150
RESERVED
CVE-2011-1149 (Android before 2.3 does not properly restrict access to the system ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2011-1148 (Use-after-free vulnerability in the substr_replace function in PHP ...)
- php5 <unfixed> (unimportant)
NOTE: only exploitable by malicious scripts
@@ -2714,15 +2738,15 @@
CVE-2011-0848
RESERVED
CVE-2011-0847 (Unspecified vulnerability in the OpenSSO Enterprise and Sun Java ...)
- TODO: check
+ NOT-FOR-US: Oracle Sun Products Suite
CVE-2011-0846 (Unspecified vulnerability in the Oracle Sun Java System Access Manager ...)
- TODO: check
+ NOT-FOR-US: Oracle Sun Java System Access Manager Policy Agent
CVE-2011-0845
RESERVED
CVE-2011-0844 (Unspecified vulnerability in the OpenSSO Enterprise and Sun Java ...)
- TODO: check
+ NOT-FOR-US: Oracle Sun Products Suite
CVE-2011-0843 (Unspecified vulnerability in the Siebel CRM Core component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2011-0842
RESERVED
CVE-2011-0841 (Unspecified vulnerability in Oracle Solaris 11 Express allows remote ...)
@@ -2794,7 +2818,7 @@
CVE-2011-0808 (Unspecified vulnerability in the Oracle Outside In Technology ...)
NOT-FOR-US: Oracle Fusion Middleware
CVE-2011-0807 (Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server ...)
- TODO: check
+ NOT-FOR-US: Oracle Sun GlassFish Enterprise Server
CVE-2011-0806 (Unspecified vulnerability in the Network Foundation component in ...)
NOT-FOR-US: Oracle Database Server
CVE-2011-0805 (Unspecified vulnerability in the UIX component in Oracle Database ...)
@@ -8899,7 +8923,7 @@
CVE-2010-3261 (Directory traversal vulnerability in RSA Authentication Agent 7.0 ...)
NOT-FOR-US: RSA Authentication Agent 7.0 for Web
CVE-2010-3260
- RESERVED
+ NOT-FOR-US: Orbeon Forms
CVE-2010-3259 (WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, ...)
- chromium-browser 6.0.472.53~r57914-1
- webkit 1.2.5-1
More information about the Secure-testing-commits
mailing list