[Secure-testing-commits] r19272 - data/CVE
Federico Ceratto
federico-guest at alioth.debian.org
Sat May 19 10:41:23 UTC 2012
Author: federico-guest
Date: 2012-05-19 10:41:23 +0000 (Sat, 19 May 2012)
New Revision: 19272
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-05-18 09:14:36 UTC (rev 19271)
+++ data/CVE/list 2012-05-19 10:41:23 UTC (rev 19272)
@@ -299,9 +299,9 @@
CVE-2012-2613
RESERVED
CVE-2012-2612 (The DiagTraceHex function in disp+work.exe 7010.29.15.58313 and ...)
- TODO: check
+ NOT-FOR-US: SAP NetWeaver
CVE-2012-2611 (The DiagTraceR3Info function in the Dialog processor in disp+work.exe ...)
- TODO: check
+ NOT-FOR-US: SAP NetWeaver
CVE-2012-2610
RESERVED
CVE-2012-2609
@@ -495,13 +495,13 @@
CVE-2012-2515
RESERVED
CVE-2012-2514 (The DiagiEventSource function in disp+work.exe 7010.29.15.58313 and ...)
- TODO: check
+ NOT-FOR-US: SAP NetWeaver
CVE-2012-2513 (The Diaginput function in disp+work.exe 7010.29.15.58313 and ...)
- TODO: check
+ NOT-FOR-US: SAP NetWeaver
CVE-2012-2512 (The DiagTraceStreamI function in disp+work.exe 7010.29.15.58313 and ...)
- TODO: check
+ NOT-FOR-US: SAP NetWeaver
CVE-2012-2511 (The DiagTraceAtoms function in disp+work.exe 7010.29.15.58313 and ...)
- TODO: check
+ NOT-FOR-US: SAP NetWeaver
CVE-2012-2510
RESERVED
CVE-2012-2509
@@ -1183,9 +1183,9 @@
CVE-2012-2278
RESERVED
CVE-2012-2277 (The IRM Server in EMC Documentum Information Rights Management 4.x ...)
- TODO: check
+ NOT-FOR-US: EMC Documentum Information Rights Management
CVE-2012-2276 (The IRM Server in EMC Documentum Information Rights Management 4.x ...)
- TODO: check
+ NOT-FOR-US: EMC Documentum Information Rights Management
CVE-2012-2275
RESERVED
CVE-2012-2274
@@ -2304,7 +2304,7 @@
CVE-2012-1805 (Buffer overflow in the ECOM Ethernet module in Koyo H0-ECOM, ...)
NOT-FOR-US: Koyo ECOM
CVE-2012-1804 (The OPC server in Progea Movicon before 11.3 allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Progea Movicon
CVE-2012-1803 (RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a ...)
NOT-FOR-US: RuggedCom Rugged Operating System
CVE-2012-1802 (Buffer overflow in the embedded web server on the Siemens Scalance X ...)
@@ -3551,9 +3551,9 @@
CVE-2012-1248 (app/config/core.php in baserCMS 1.6.15 and earlier does not properly ...)
TODO: check
CVE-2012-1247 (Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and ...)
- TODO: check
+ NOT-FOR-US: KENT-WEB WEB MART
CVE-2012-1246 (Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and ...)
- TODO: check
+ NOT-FOR-US: KENT-WEB WEB MART
CVE-2012-1245 (Cross-site scripting (XSS) vulnerability in the cleanup_urls function ...)
NOT-FOR-US: OSQA
CVE-2012-1244 (The NTT DOCOMO sp mode mail application 5400 and earlier for Android ...)
@@ -5082,51 +5082,51 @@
CVE-2012-0672 (WebKit in Apple iOS before 5.1.1 allows remote attackers to execute ...)
TODO: check
CVE-2012-0671 (Apple QuickTime before 7.7.2 allows remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0670 (Integer overflow in Apple QuickTime before 7.7.2 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0669 (Buffer overflow in Apple QuickTime before 7.7.2 on Windows allows ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0668 (Buffer overflow in Apple QuickTime before 7.7.2 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0667 (Integer signedness error in Apple QuickTime before 7.7.2 on Windows ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0666 (Stack-based buffer overflow in the plugin in Apple QuickTime before ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0665 (Heap-based buffer overflow in Apple QuickTime before 7.7.2 allows ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0664 (Heap-based buffer overflow in Apple QuickTime before 7.7.2 on Windows ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0663 (Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2012-0662 (Integer overflow in the Security Framework in Apple Mac OS X before ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0661 (Use-after-free vulnerability in QuickTime in Apple Mac OS X 10.7.x ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0660 (Buffer underflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0659 (Integer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0658 (Buffer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0657 (Quartz Composer in Apple Mac OS X before 10.7.4, when the RSS ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0656 (Race condition in LoginUIFramework in Apple Mac OS X 10.7.x before ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0655 (libsecurity in Apple Mac OS X before 10.7.4 does not properly restrict ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0654 (libsecurity in Apple Mac OS X before 10.7.4 accesses uninitialized ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0653
RESERVED
CVE-2012-0652 (Login Window in Apple Mac OS X 10.7.3, when Legacy File Vault or ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0651 (The directory server in Directory Service in Apple Mac OS X 10.6.8 ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0650
RESERVED
CVE-2012-0649 (Race condition in the initialization routine in blued in Bluetooth in ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2012-0648 (WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle ...)
- webkit <undetermined>
CVE-2012-0647 (WebKit in Apple Safari before 5.1.4 does not properly handle redirects ...)
@@ -5261,29 +5261,29 @@
- mysql-5.1 5.1.62-1 (bug #670636)
- mysql-5.5 5.5.23-1
CVE-2012-0582 (Unspecified vulnerability in the Siebel Clinical component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Industry Applications
CVE-2012-0581 (Unspecified vulnerability in the Oracle Agile component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2012-0580 (Unspecified vulnerability in the Oracle Agile PLM for Process ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2012-0579 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
- TODO: check
+ NOT-FOR-US: Oracle Financial Services Software
CVE-2012-0578
RESERVED
CVE-2012-0577 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
- TODO: check
+ NOT-FOR-US: Oracle Financial Services Software
CVE-2012-0576 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
- TODO: check
+ NOT-FOR-US: Oracle Financial Services Software
CVE-2012-0575 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
- TODO: check
+ NOT-FOR-US: Oracle Financial Services Software
CVE-2012-0574
RESERVED
CVE-2012-0573 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
- TODO: check
+ NOT-FOR-US: Oracle Financial Services Software
CVE-2012-0572
RESERVED
CVE-2012-0571 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
- TODO: check
+ NOT-FOR-US: Oracle Financial Services Software
CVE-2012-0570
RESERVED
CVE-2012-0569
@@ -5291,17 +5291,17 @@
CVE-2012-0568
RESERVED
CVE-2012-0567 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
- TODO: check
+ NOT-FOR-US: Oracle Financial Services Software
CVE-2012-0566 (Unspecified vulnerability in the Oracle Agile component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2012-0565 (Unspecified vulnerability in the Oracle Agile component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2012-0564 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2012-0563
RESERVED
CVE-2012-0562 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2012-0561 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
NOT-FOR-US: Oracle PeopleSoft Products
CVE-2012-0560 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
@@ -5893,11 +5893,11 @@
CVE-2012-0379
RESERVED
CVE-2012-0378 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...)
- TODO: check
+ NOT-FOR-US: Cisco Adaptive Security Appliances
CVE-2012-0377
RESERVED
CVE-2012-0376 (The voice-sipstack component in Cisco Unified Communications Manager ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Communications Manager
CVE-2012-0375
RESERVED
CVE-2012-0374
@@ -6206,7 +6206,7 @@
CVE-2012-0266 (Multiple stack-based buffer overflows in the NTR ActiveX control ...)
NOT-FOR-US: NTR ActiveX control
CVE-2012-0265 (Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2011-5046 (The Graphics Device Interface (GDI) in win32k.sys in the kernel-mode ...)
NOT-FOR-US: Microsoft Windows 7
CVE-2011-5045 (Cross-site scripting (XSS) vulnerability in details_view.php in PHP ...)
@@ -6993,7 +6993,7 @@
CVE-2012-0203
RESERVED
CVE-2012-0202 (Multiple stack-based buffer overflows in tm1admsd.exe in the Admin ...)
- TODO: check
+ NOT-FOR-US: Admin Server in IBM Cognos TM1
CVE-2012-0201 (Stack-based buffer overflow in pcspref.dll in pcsws.exe in IBM ...)
NOT-FOR-US: IBM Personal Communications
CVE-2012-0200 (The server in IBM solidDB 6.5 before Interim Fix 6 does not properly ...)
@@ -7090,7 +7090,7 @@
CVE-2012-0179 (Double free vulnerability in tcpip.sys in Microsoft Windows Server ...)
NOT-FOR-US: Microsoft Windows
CVE-2012-0178 (Race condition in partmgr.sys in Windows Partition Manager in ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2012-0177 (Heap-based buffer overflow in the Office Works File Converter in ...)
NOT-FOR-US: Microsoft
CVE-2012-0176 (Double free vulnerability in Microsoft Silverlight 4 before 4.1.10329 ...)
@@ -17809,7 +17809,7 @@
CVE-2011-1391 (The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll ...)
NOT-FOR-US: IBM Rational Rhapsody
CVE-2011-1390 (SQL injection vulnerability in the Maintenance tool in IBM Rational ...)
- TODO: check
+ NOT-FOR-US: IBM Rational ClearQuest
CVE-2011-1389 (Multiple directory traversal vulnerabilities in the vendor daemon in ...)
NOT-FOR-US: Telelogic License Server
CVE-2011-1388 (The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll ...)
More information about the Secure-testing-commits
mailing list