[Secure-testing-commits] r17785 - data/CVE

Florian Weimer fw at alioth.debian.org
Tue Dec 13 17:42:10 UTC 2011 

Author: fw
Date: 2011-12-13 17:42:10 +0000 (Tue, 13 Dec 2011)
New Revision: 17785

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-12-13 17:11:56 UTC (rev 17784)
+++ data/CVE/list	2011-12-13 17:42:10 UTC (rev 17785)
@@ -103,25 +103,25 @@
 CVE-2011-4717
 	RESERVED
 CVE-2011-4716 (Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, ...)
-	TODO: check
+	NOT-FOR-US: DreamBox
 CVE-2011-4715 (Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha ...)
-	TODO: check
+	- koha <itp> (bug #389876)
 CVE-2011-4714 (Directory traversal vulnerability in Virtual Vertex Muster before 6.20 ...)
-	TODO: check
+	NOT-FOR-US: Virtual Vertex Muster
 CVE-2011-4713 (Directory traversal vulnerability in catalog/content.php in osCSS2 ...)
-	TODO: check
+	NOT-FOR-US: osCSS2
 CVE-2011-4712 (Directory traversal vulnerability in Oxide WebServer allows remote ...)
-	TODO: check
+	NOT-FOR-US: Oxide
 CVE-2011-4711 (Multiple directory traversal vulnerabilities in namazu.cgi in Namazu ...)
-	TODO: check
+	- namazu2 <not-affected> (Windows-specific issue)
 CVE-2011-4710 (Multiple SQL injection vulnerabilities in Pixie CMS 1.01 through 1.04 ...)
-	TODO: check
+	NOT-FOR-US: Pixie CMS
 CVE-2011-4709 (Multiple cross-site scripting (XSS) vulnerabilities in Hotaru.php in ...)
-	TODO: check
+	NOT-FOR-US: Hotaru 
 CVE-2011-4708 (Cross-site scripting (XSS) vulnerability in IBM Rational Asset Manager ...)
-	TODO: check
+	NOT-FOR-US: IBM Rational Asset Manager
 CVE-2011-4707 (Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan ...)
-	TODO: check
+	NOT-FOR-US: SAP Netweaver
 CVE-2011-4706
 	RESERVED
 CVE-2011-4705
@@ -247,7 +247,7 @@
 CVE-2012-0021
 	RESERVED
 CVE-2011-4695 (Unspecified vulnerability in Microsoft Windows 7 SP1, when Java is ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2011-4694 (Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2011-4693 (Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows ...)
@@ -88235,8 +88235,6 @@
 	NOT-FOR-US: EKINboard
 CVE-2005-4729 (SQL injection vulnerabilitiy in show.php in VBZooM Forum allows remote ...)
 	NOT-FOR-US: VBZooM
-CVE-2006-XXXX [Directory traversal issue in Namazu2]
-	- namazu2 <not-affected> (Windows-specific issue)
 CVE-2006-1166 (Monotone 0.25 and earlier, when a user creates a file in a directory ...)
 	- monotone 0.26pre1-0.1 (low)
 	[sarge] - monotone <no-dsa> (Only exploitable in very far-fetched situation)

More information about the Secure-testing-commits mailing list