[Secure-testing-commits] r20481 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Tue Nov 13 14:44:31 UTC 2012 

Author: jmm
Date: 2012-11-13 14:44:31 +0000 (Tue, 13 Nov 2012)
New Revision: 20481

Modified:
   data/CVE/list
Log:
new xen issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-11-13 08:17:46 UTC (rev 20480)
+++ data/CVE/list	2012-11-13 14:44:31 UTC (rev 20481)
@@ -3394,14 +3394,20 @@
 	NOTE: http://seclists.org/oss-sec/2012/q4/237
 CVE-2012-4539
 	RESERVED
+	- xen <unfixed>
 CVE-2012-4538
 	RESERVED
+	- xen <unfixed>
 CVE-2012-4537
 	RESERVED
+	- xen <unfixed>
 CVE-2012-4536
 	RESERVED
+	- xen <unfixed>
+	[squeeze] - xen <not-affected> (Only affects 4.1.x)
 CVE-2012-4535
 	RESERVED
+	- xen <unfixed>
 CVE-2012-4534
 	RESERVED
 CVE-2012-4533 [viewvc xxs via commit message]
@@ -4732,13 +4738,13 @@
 	[squeeze] - squashfs-tools <no-dsa> (Minor issue)
 	[wheezy] - squashfs-tools <no-dsa> (Minor issue)
 CVE-2012-4023 (CRLF injection vulnerability in Pebble before 2.6.4 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Pebble blog
 CVE-2012-4022 (Pebble before 2.6.4 allows remote attackers to trigger loss of ...)
-	TODO: check
+	NOT-FOR-US: Pebble blog
 CVE-2012-4021 (MosP kintai kanri before 4.1.0 does not properly perform ...)
-	TODO: check
+	NOT-FOR-US: MosP kintai kanri
 CVE-2012-4020 (MosP kintai kanri before 4.1.0 does not enforce privilege ...)
-	TODO: check
+	NOT-FOR-US: MosP kintai kanri
 CVE-2012-4019 (Cross-site scripting (XSS) vulnerability in tokyo_bbs.cgi in Come on ...)
 	NOT-FOR-US: Come on Girls Interface (CGI) Tokyo BBS
 CVE-2012-4018 (Cross-site scripting (XSS) vulnerability in Final Beta Laboratory ...)
@@ -6574,7 +6580,7 @@
 CVE-2012-3316
 	RESERVED
 CVE-2012-3315 (The Java servlets in the management console in IBM Tivoli Federated ...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli
 CVE-2012-3314 (IBM Tivoli Federated Identity Manager (TFIM) and Tivoli Federated ...)
 	NOT-FOR-US: IBM Tivoli
 CVE-2012-3313 (Cross-site scripting (XSS) vulnerability in IBM Maximo Asset ...)
@@ -6666,9 +6672,9 @@
 CVE-2012-3271
 	RESERVED
 CVE-2012-3270 (Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and ...)
-	TODO: check
+	NOT-FOR-US: HP Performance Insight
 CVE-2012-3269 (Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and ...)
-	TODO: check
+	NOT-FOR-US: HP Performance Insight
 CVE-2012-3268
 	RESERVED
 CVE-2012-3267 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.20 ...)

More information about the Secure-testing-commits mailing list