[Secure-testing-commits] r20644 - data/CVE

Tue Dec 11 09:09:22 UTC 2012

Author: thijs
Date: 2012-12-11 09:09:22 +0000 (Tue, 11 Dec 2012)
New Revision: 20644

Modified:
   data/CVE/list
Log:
nfu's / 'new' mahara issue


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2012-12-11 09:03:48 UTC (rev 20643)
+++ data/CVE/list	2012-12-11 09:09:22 UTC (rev 20644)
@@ -4354,7 +4354,7 @@
 CVE-2012-4858
 	RESERVED
 CVE-2012-4857 (Buffer overflow in IBM Informix 11.50 through 11.50.xC9W2 and 11.70 ...)
-	TODO: check
+	NOT-FOR-US: IBM Informix
 CVE-2012-4856
 	RESERVED
 CVE-2012-4855
@@ -4392,7 +4392,7 @@
 CVE-2012-4839
 	RESERVED
 CVE-2012-4838 (IBM Flex System Chassis Management Module (CMM) and Integrated ...)
-	TODO: check
+	NOT-FOR-US: IBM Flex
 CVE-2012-4837
 	RESERVED
 CVE-2012-4836
@@ -4917,13 +4917,13 @@
 CVE-2012-4691
 	RESERVED
 CVE-2012-4690 (Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, ...)
-	TODO: check
+	NOT-FOR-US: Rockwell
 CVE-2012-4689
 	RESERVED
 CVE-2012-4688
 	RESERVED
 CVE-2012-4687 (Post Oak AWAM Bluetooth Reader Traffic System does not use a ...)
-	TODO: check
+	NOT-FOR-US: Post Oak
 CVE-2012-4686 (SQL injection vulnerability in announcement.php in vBulletin 4.1.10 ...)
 	NOT-FOR-US: vBulletin
 CVE-2012-4685 (Cross-site scripting (XSS) vulnerability in Arbor Networks Peakflow SP ...)
@@ -6029,7 +6029,7 @@
 CVE-2012-4348
 	RESERVED
 CVE-2012-4347 (Multiple directory traversal vulnerabilities in Symantec Messaging ...)
-	TODO: check
+	NOT-FOR-US: Symantec
 CVE-2012-4346
 	RESERVED
 CVE-2012-4345 (Multiple cross-site scripting (XSS) vulnerabilities in the Database ...)
@@ -8693,7 +8693,7 @@
 CVE-2012-3298 (Unspecified vulnerability in the REST services framework in IBM ...)
 	NOT-FOR-US: IBM WebSphere Commerce
 CVE-2012-3297 (Cross-site scripting (XSS) vulnerability in the embedded HTTP server ...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli
 CVE-2012-3296 (Cross-site scripting (XSS) vulnerability in the Help link in the login ...)
 	NOT-FOR-US: IBM Power Hardware Management Console
 CVE-2012-3295 (IBM WebSphere MQ 7.1, when an SVRCONN channel is used, allows remote ...)
@@ -11245,7 +11245,7 @@
 CVE-2012-2254
 	RESERVED
 CVE-2012-2253 (Cross-site scripting (XSS) vulnerability in group/members.php in ...)
-	TODO: check
+	- mahara <unfixed>
 CVE-2012-2252 [incorrect filtering of --rsh option]
 	RESERVED
 	{DSA-2578-1}
@@ -11359,7 +11359,7 @@
 CVE-2012-2212 (** DISPUTED ** McAfee Web Gateway 7.0 allows remote attackers to ...)
 	NOT-FOR-US: McAfee Web Gateway
 CVE-2012-2211 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	- egroupware <removed>
 CVE-2012-XXXX [libpng electric fence crash]
 	- libpng 1.2.49-1 (low; bug #668082)
 	NOTE: CVE id requested


