[Secure-testing-commits] r17684 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Nov 25 18:23:00 UTC 2011 

Author: jmm
Date: 2011-11-25 18:22:59 +0000 (Fri, 25 Nov 2011)
New Revision: 17684

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-11-25 17:46:32 UTC (rev 17683)
+++ data/CVE/list	2011-11-25 18:22:59 UTC (rev 17684)
@@ -118,11 +118,11 @@
 CVE-2011-4499 (The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco ...)
 	NOT-FOR-US: hardware device with broken UPnP UGD implementation
 CVE-2011-4498 (Cross-site request forgery (CSRF) vulnerability in the web console in ...)
-	TODO: check
+	NOT-FOR-US: Zenprise Device Manager
 CVE-2011-4497 (QIS_wizard.htm on the ASUS RT-N56U router with firmware before ...)
-	TODO: check
+	NOT-FOR-US: Asus device
 CVE-2011-4496 (Buffer overflow in Aviosoft DTV Player 1.0.1.2 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Aviosoft DTV Player
 CVE-2011-4495
 	RESERVED
 CVE-2011-4494
@@ -184,7 +184,7 @@
 CVE-2011-4466
 	RESERVED
 CVE-2011-4465 (Cross-site scripting (XSS) vulnerability in IBM Lotus Mobile Connect ...)
-	TODO: check
+	NOT-FOR-US: IBM Lotus Mobile Connect
 CVE-2011-XXXX [busybox integer overflow]
 	- busybox <unfixed> (unimportant; bug #635370)
 	NOTE: not sure if this has a security impact, but its something that should be corrected
@@ -203,7 +203,7 @@
 CVE-2011-4458
 	RESERVED
 CVE-2011-4457 (OWASP HTML Sanitizer (aka owasp-java-html-sanitizer) before 88, when ...)
-	TODO: check
+	NOT-FOR-US: OWASP HTML Sanitizer
 CVE-2011-4456
 	REJECTED
 CVE-2011-4455
@@ -351,7 +351,7 @@
 CVE-2011-4405
 	RESERVED
 CVE-2011-4404 (The default configuration of the HTTP server in Jetty in vSphere ...)
-	TODO: check
+	NOT-FOR-US: vSphere update manager
 CVE-2011-4403
 	RESERVED
 CVE-2011-4402
@@ -572,7 +572,7 @@
 CVE-2011-4312
 	RESERVED
 CVE-2011-4311 (ResourceSpace before 4.2.2833 does not properly validate access keys, ...)
-	TODO: check
+	NOT-FOR-US: ResourceSpace
 CVE-2011-4310
 	RESERVED
 CVE-2011-4309 [MSA-11-0041]
@@ -1085,7 +1085,7 @@
 CVE-2011-4160
 	RESERVED
 CVE-2011-4159 (Unspecified vulnerability in System Administration Manager (SAM) in ...)
-	TODO: check
+	NOT-FOR-US: HP-UX
 CVE-2011-4158 (Unspecified vulnerability in HP Directories Support for ProLiant ...)
 	NOT-FOR-US: HP Directories Support
 CVE-2011-4157 (Stack-based buffer overflow in hydra.exe in HP SAN/iQ before 9.5 on ...)

More information about the Secure-testing-commits mailing list