[Secure-testing-commits] r20579 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Nov 30 14:41:54 UTC 2012 

Author: jmm
Date: 2012-11-30 14:41:53 +0000 (Fri, 30 Nov 2012)
New Revision: 20579

Modified:
   data/CVE/list
Log:
new chromium issues
new wireshark non-issues
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-11-30 12:52:24 UTC (rev 20578)
+++ data/CVE/list	2012-11-30 14:41:53 UTC (rev 20579)
@@ -1246,26 +1246,48 @@
 	RESERVED
 CVE-2012-5602
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5601
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5600
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5599
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5598
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5597
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5596
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5595
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5594
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5593
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5592
 	RESERVED
+	- wireshark <unfixed> (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-5591
 	RESERVED
 CVE-2012-5590
@@ -2355,8 +2377,10 @@
 	RESERVED
 CVE-2012-5138
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2012-5137
 	RESERVED
+	- chromium-browser <unfixed>
 CVE-2012-5136 (Google Chrome before 23.0.1271.91 does not properly perform a cast of ...)
 	- chromium-browser <unfixed>
 CVE-2012-5135 (Use-after-free vulnerability in Google Chrome before 23.0.1271.91 ...)
@@ -7406,7 +7430,7 @@
 CVE-2012-3272
 	RESERVED
 CVE-2012-3271 (Unspecified vulnerability on the HP Integrated Lights-Out 3 (aka iLO3) ...)
-	TODO: check
+	NOT-FOR-US: HP ILO
 CVE-2012-3270 (Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and ...)
 	NOT-FOR-US: HP Performance Insight
 CVE-2012-3269 (Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and ...)
@@ -9291,9 +9315,9 @@
 CVE-2012-2439 (The default configuration of the NETGEAR ProSafe FVS318N firewall ...)
 	NOT-FOR-US: NETGEAR appliance
 CVE-2012-2438 (ar web content manager (AWCM) 2.2 does not restrict the number of ...)
-	TODO: check
+	NOT-FOR-US: ar web content manager
 CVE-2012-2437 (cookie_gen.php in ar web content manager (AWCM) 2.2 does not require ...)
-	TODO: check
+	NOT-FOR-US: ar web content manager
 CVE-2012-2436 (Multiple cross-site scripting (XSS) vulnerabilities in Pligg CMS ...)
 	NOT-FOR-US: Pligg
 CVE-2012-2435 (Directory traversal vulnerability in the captcha module in Pligg CMS ...)
@@ -12964,7 +12988,7 @@
 CVE-2012-0961
 	RESERVED
 CVE-2012-0960 (Unity integration extension (unity-firefox-extension) before 2.4.1 for ...)
-	TODO: check
+	NOT-FOR-US: Ubuntu Unity extension
 CVE-2012-0959 (Remote Login Service (RLS) 1.0.0 does not properly clear account ...)
 	NOT-FOR-US: Ubuntu remote login service
 CVE-2012-0958

More information about the Secure-testing-commits mailing list