[Secure-testing-commits] r20304 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Oct 8 09:50:17 UTC 2012


Author: jmm
Date: 2012-10-08 09:50:17 +0000 (Mon, 08 Oct 2012)
New Revision: 20304

Modified:
   data/CVE/list
Log:
new ruby issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-10-08 09:14:21 UTC (rev 20303)
+++ data/CVE/list	2012-10-08 09:50:17 UTC (rev 20304)
@@ -1044,13 +1044,13 @@
 CVE-2012-4834
 	RESERVED
 CVE-2012-4833 (fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not ...)
-	TODO: check
+	NOT-FOR-US: AIX
 CVE-2012-4832
 	RESERVED
 CVE-2012-4831
 	RESERVED
 CVE-2012-4830 (Unspecified vulnerability in IBM WebSphere Commerce 6.0 through ...)
-	TODO: check
+	NOT-FOR-US: WebSphere
 CVE-2012-4829
 	RESERVED
 CVE-2012-4828
@@ -2164,6 +2164,7 @@
 	RESERVED
 CVE-2012-4481
 	RESERVED
+	- ruby1.8 <unfixed> (bug #689945)
 CVE-2012-4480
 	RESERVED
 CVE-2012-4479
@@ -3275,7 +3276,7 @@
 CVE-2012-4019
 	RESERVED
 CVE-2012-4018 (Cross-site scripting (XSS) vulnerability in Final Beta Laboratory ...)
-	TODO: check
+	NOT-FOR-US: Final Beta Laboratory MyWebSearch
 CVE-2012-4017 (The jigbrowser+ application before 1.5.0 for Android does not properly ...)
 	NOT-FOR-US: Android application
 CVE-2012-4016 (The ATOK application before 1.0.4 for Android allows remote attackers ...)




More information about the Secure-testing-commits mailing list