[Secure-testing-commits] r20130 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Tue Sep 11 06:02:12 UTC 2012 

Author: jmm
Date: 2012-09-11 06:02:11 +0000 (Tue, 11 Sep 2012)
New Revision: 20130

Modified:
   data/CVE/list
Log:
httrack is in the archive, but not affected
otrs2 already fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-09-11 04:15:43 UTC (rev 20129)
+++ data/CVE/list	2012-09-11 06:02:11 UTC (rev 20130)
@@ -15,8 +15,7 @@
 CVE-2012-4876 (Stack-based buffer overflow in the UltraMJCam ActiveX Control in ...)
 	NOT-FOR-US: TRENDnet SecurView TV-IP121WN Wireless Internet Camera
 CVE-2012-4875 (** DISPUTED ** ...)
-	- ghostscript <undetermined>
-	TODO: check
+	- ghostscript <not-affected> (Even if it's genuine, it's Windows-code)
 CVE-2012-4874 (Unspecified vulnerability in the Another WordPress Classifieds Plugin ...)
 	NOT-FOR-US: Another WordPress Classifieds Plugin for Wordpress
 CVE-2012-4873 (Cross-site scripting (XSS) vulnerability in the file_download function ...)
@@ -294,7 +293,7 @@
 CVE-2010-5253 (Untrusted search path vulnerability in WinImage 8.50 allows local ...)
 	NOT-FOR-US: WinImage
 CVE-2010-5252 (Untrusted search path vulnerability in HTTrack 3.43-9 allows local ...)
-	NOT-FOR-US: HTTrack
+	- httrack <not-affected> (Only affects Windows)
 CVE-2010-5251 (Multiple untrusted search path vulnerabilities in IBM Lotus Notes 8.5 ...)
 	NOT-FOR-US: IBM Lotus Notes
 CVE-2010-5250 (Untrusted search path vulnerability in the ...)
@@ -953,8 +952,7 @@
 CVE-2012-4601
 	RESERVED
 CVE-2012-4600 (Cross-site scripting (XSS) vulnerability in Open Ticket Request System ...)
-	- otrs2 <unfixed>
-	TODO: check
+	- otrs2 3.1.7+dfsg1-5
 CVE-2011-5102 (The Investigative Reports web interface in the TRITON management ...)
 	NOT-FOR-US: Websense
 CVE-2010-5149 (Websense Web Security and Web Filter before 6.3.3 Hotfix 27 and 7.x ...)
@@ -9628,6 +9626,7 @@
 	RESERVED
 CVE-2012-0956
 	RESERVED
+	NOT-FOR-US: ubiquity-slideshow-ubuntu
 CVE-2012-0955
 	RESERVED
 CVE-2012-0954 (APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the ...)

More information about the Secure-testing-commits mailing list