[Secure-testing-commits] r20596 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Tue Dec 4 08:59:34 UTC 2012 

Author: jmm
Date: 2012-12-04 08:59:34 +0000 (Tue, 04 Dec 2012)
New Revision: 20596

Modified:
   data/CVE/list
Log:
yui issues affect icinga-web
new sleuthkit non-issue
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-12-04 07:15:56 UTC (rev 20595)
+++ data/CVE/list	2012-12-04 08:59:34 UTC (rev 20596)
@@ -609,12 +609,15 @@
 CVE-2012-5883 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
 	- yui3 <not-affected>
 	- yui <unfixed> (bug #693608)
+	- icinga-web 1.7.1+dfsg2-6 (bug #694641)
 CVE-2012-5882 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
 	- yui3 <not-affected>
 	- yui <unfixed> (bug #693608)
+	- icinga-web 1.7.1+dfsg2-6 (bug #694641)
 CVE-2012-5881 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
 	- yui3 <not-affected>
 	- yui <unfixed> (bug #693608)
+	- icinga-web 1.7.1+dfsg2-6 (bug #694641)
 CVE-2012-5880
 	RESERVED
 CVE-2012-5879
@@ -1239,8 +1242,11 @@
 	RESERVED
 CVE-2012-5619
 	RESERVED
+	- sleuthkit <unfixed> (unimportant; bug #695097)
+	NOTE: Hardly a vulnerability
 CVE-2012-5618
 	RESERVED
+	NOT-FOR-US: Ushahidi
 CVE-2012-5617
 	RESERVED
 CVE-2012-5616
@@ -1430,6 +1436,7 @@
 	NOT-FOR-US: MATE gnome fork
 CVE-2012-5559
 	RESERVED
+	NOT-FOR-US: Drupal chaos tool addon
 CVE-2012-5558
 	RESERVED
 CVE-2012-5557
@@ -2839,7 +2846,7 @@
 CVE-2012-4965
 	RESERVED
 CVE-2012-4964 (The Samsung printer firmware before 20121031 has a hardcoded ...)
-	TODO: check
+	NOT-FOR-US: Samsung printer firmware
 CVE-2012-4963
 	RESERVED
 CVE-2012-4962
@@ -3138,7 +3145,7 @@
 CVE-2012-4842
 	RESERVED
 CVE-2012-4841 (Unspecified vulnerability in Tivoli Endpoint Manager for Remote ...)
-	TODO: check
+	NOT-FOR-US: Tivoli
 CVE-2012-4840
 	RESERVED
 CVE-2012-4839
@@ -3840,15 +3847,15 @@
 CVE-2012-4616
 	RESERVED
 CVE-2012-4615 (EMC Smarts Network Configuration Manager (NCM) before 9.1 uses a ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2012-4614 (The default configuration of EMC Smarts Network Configuration Manager ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2012-4613 (EMC RSA Data Protection Manager Appliance 2.7.x and 3.x before 3.2.1 ...)
 	NOT-FOR-US: EMC RSA Data Protection Manager Appliance
 CVE-2012-4612 (Cross-site scripting (XSS) vulnerability in EMC RSA Data Protection ...)
 	NOT-FOR-US: EMC RSA Data Protection Manager Appliance
 CVE-2012-4611 (Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA ...)
-	TODO: check
+	NOT-FOR-US: EMC
 CVE-2012-4610 (EMC Avamar Client for VMware 6.1 stores the cleartext server root ...)
 	NOT-FOR-US: VMware
 CVE-2012-4609

More information about the Secure-testing-commits mailing list