[Secure-testing-commits] r18418 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Feb 10 18:24:14 UTC 2012


Author: jmm
Date: 2012-02-10 18:24:13 +0000 (Fri, 10 Feb 2012)
New Revision: 18418

Modified:
   data/CVE/list
Log:
NFUs
filed bug for imp4


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-02-10 18:02:07 UTC (rev 18417)
+++ data/CVE/list	2012-02-10 18:24:13 UTC (rev 18418)
@@ -2,7 +2,8 @@
 	RESERVED
 CVE-2012-1037
 	RESERVED
-	- glpi <unfixed> (unimportant)
+	- glpi <unfixed> (bug #659383; unimportant)
+	[squeeze] - glpi <not-affected> (Introduced in 0.78)
 	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2012-1036
 	RESERVED
@@ -83,7 +84,7 @@
 CVE-2002-2483
 	- linux-2.6 2.4.20
 CVE-2012-1002 (Unspecified vulnerability in OpenConf 4.x before 4.12 has unknown ...)
-	TODO: check
+	NOT-FOR-US: OpenConf
 CVE-2012-1001
 	RESERVED
 CVE-2012-1000
@@ -103,11 +104,11 @@
 CVE-2012-0993
 	RESERVED
 CVE-2012-0992 (interface/fax/fax_dispatch.php in OpenEMR 4.1.0 allows remote ...)
-	TODO: check
+	NOT-FOR-US: OpenEMR
 CVE-2012-0991 (Multiple directory traversal vulnerabilities in OpenEMR 4.1.0 allow ...)
-	TODO: check
+	NOT-FOR-US: OpenEMR
 CVE-2012-0990 (Cross-site request forgery (CSRF) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: DClassifieds
 CVE-2012-0989
 	RESERVED
 CVE-2012-0988
@@ -289,7 +290,6 @@
 CVE-2012-0909 (Cross-site scripting (XSS) vulnerability in Horde_Form in Horde ...)
 	- horde3 <unfixed>
 	- imp4 <unfixed>
-	TODO: File bugs
 CVE-2012-0907 (Directory traversal vulnerability in the web player in NeoAxis NeoAxis ...)
 	NOT-FOR-US: NeoAxis NeoAxis web player
 CVE-2012-0906 (SQL injection vulnerability in the Moviebase addon for deV!L'z ...)
@@ -575,7 +575,6 @@
 CVE-2012-0791 (Multiple cross-site scripting (XSS) vulnerabilities in Horde IMP ...)
 	- horde3 <unfixed>
 	- imp4 <unfixed>
-	TODO: File bugs
 CVE-2012-0790 (Cross-site scripting (XSS) vulnerability in smokeping_cgi in Smokeping ...)
 	TODO: check
 CVE-2012-0789




More information about the Secure-testing-commits mailing list