[Secure-testing-commits] r16980 - data/CVE

Johnathan Ritzi jrdioko-guest at alioth.debian.org
Mon Jul 25 05:05:20 UTC 2011 

Author: jrdioko-guest
Date: 2011-07-25 05:05:20 +0000 (Mon, 25 Jul 2011)
New Revision: 16980

Modified:
   data/CVE/list
Log:
First stab at processing issues (NFUs), please check my work!


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-07-25 04:08:25 UTC (rev 16979)
+++ data/CVE/list	2011-07-25 05:05:20 UTC (rev 16980)
@@ -820,7 +820,7 @@
 	[squeeze] - linux-2.6 <not-affected> (Vulnerable code not present)
 	[lenny] - linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2011-2520 (fw_dbus.py in system-config-firewall 1.2.29 and earlier uses the ...)
-	TODO: check
+	NOT-FOR-US: system-config-firewall
 CVE-2011-2519
 	RESERVED
 CVE-2011-2518
@@ -5804,7 +5804,7 @@
 CVE-2011-0768
 	RESERVED
 CVE-2011-0767 (Cross-site scripting (XSS) vulnerability in the management GUI in the ...)
-	TODO: check
+	NOT-FOR-US: Imperva SecureSphere Web Application Firewall
 CVE-2011-0766 (The random number generator in the Crypto application before 2.0.2.2, ...)
 	- erlang <unfixed> (bug #628456)
 	NOTE: http://www.kb.cert.org/vuls/id/178990
@@ -5893,7 +5893,8 @@
 CVE-2011-0746 (Cross-site request forgery (CSRF) vulnerability in ...)
 	NOT-FOR-US: ZyXEL O2 DSL Router
 CVE-2011-0745 (SugarCRM before 6.1.3 does not properly handle reloads and direct ...)
-	TODO: check
+	NOT-FOR-US: SugarCRM
+	NOTE: there is an RFP for SugarCRM #457876
 CVE-2011-0744
 	RESERVED
 CVE-2011-0743
@@ -7491,11 +7492,11 @@
 CVE-2011-0220
 	RESERVED
 CVE-2011-0219 (Apple Safari before 5.0.6 allows remote attackers to bypass the Same ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari
 CVE-2011-0218 (WebKit, as used in Apple Safari before 5.0.6, allows remote attackers ...)
 	TODO: check
 CVE-2011-0217 (Apple Safari before 5.0.6 provides AutoFill information to scripts ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari
 CVE-2011-0216 (Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote ...)
 	TODO: check
 CVE-2011-0215 (ImageIO in Apple Safari before 5.0.6 on Windows does not properly ...)

More information about the Secure-testing-commits mailing list