[Secure-testing-commits] r20230 - data/CVE

Yves-Alexis Perez corsac at alioth.debian.org
Tue Sep 25 20:40:24 UTC 2012


Author: corsac
Date: 2012-09-25 20:40:23 +0000 (Tue, 25 Sep 2012)
New Revision: 20230

Modified:
   data/CVE/list
Log:
add a bunch of NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-09-25 19:42:29 UTC (rev 20229)
+++ data/CVE/list	2012-09-25 20:40:23 UTC (rev 20230)
@@ -1,21 +1,21 @@
 CVE-2012-5159 [phpmyadmin cdnetworks-kr-1 backdoored version]
 	- phpmyadmin <not-affected>
 CVE-2012-5105 (Multiple cross-site scripting (XSS) vulnerabilities in SQLiteManager ...)
-	TODO: check
+	NOT-FOR-US: SQLiteManager
 CVE-2012-5104 (Cross-site scripting (XSS) vulnerability in forums/ubbthreads.php in ...)
-	TODO: check
+	NOT-FOR-US: UBB.threads
 CVE-2012-5103 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: Ggb guestbook
 CVE-2012-5102 (Cross-site scripting (XSS) vulnerability in inc/extensions.php in ...)
-	TODO: check
+	NOT-FOR-US: VertigoServ
 CVE-2012-5101 (SQL injection vulnerability in the JExtensions JE Poll component ...)
-	TODO: check
+	NOT-FOR-US: Joomla! extension
 CVE-2012-5100 (Directory traversal vulnerability in HServer 0.1.1 allows remote ...)
-	TODO: check
+	NOT-FOR-US: HServer
 CVE-2012-5099 (Cross-site scripting (XSS) vulnerability in list.php in PHPB2B 4.1 and ...)
-	TODO: check
+	NOT-FOR-US: PHPB2B
 CVE-2012-5098 (Multiple SQL injection vulnerabilities in Php-X-Links, possibly 1.0, ...)
-	TODO: check
+	NOT-FOR-US: PHP-X-Links
 CVE-2012-5097
 	RESERVED
 CVE-2012-5096
@@ -197,19 +197,19 @@
 CVE-2012-5008
 	RESERVED
 CVE-2011-5201 (Multiple SQL injection vulnerabilities in sign.php in tinyguestbook ...)
-	TODO: check
+	NOT-FOR-US: tinyguestbook
 CVE-2011-5200 (Multiple SQL injection vulnerabilities in DeDeCMS, possibly 5.6, allow ...)
-	TODO: check
+	NOT-FOR-US: DeDeCMS
 CVE-2011-5199 (Cross-site scripting (XSS) vulnerability in sign.php in tinyguestbook ...)
-	TODO: check
+	NOT-FOR-US: tinyguestbook
 CVE-2011-5198 (SQL injection vulnerability in search.php in Neturf eCommerce Shopping ...)
-	TODO: check
+	NOT-FOR-US: Neturf eCommerce Shopping Cart
 CVE-2011-5197 (Cross-site request forgery (CSRF) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Public Knowledge Project Open Harvester Systems
 CVE-2011-5196 (Cross-site request forgery (CSRF) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Public Knowledge Project Open Journal Systems
 CVE-2011-5195 (Cross-site request forgery (CSRF) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Public Knowledge Project Open Conference Systems
 CVE-2011-5194 (Cross-site scripting (XSS) vulnerability in ...)
 	TODO: check
 CVE-2011-5193 (Cross-site scripting (XSS) vulnerability in ...)
@@ -5008,7 +5008,7 @@
 CVE-2012-3138
 	RESERVED
 CVE-2012-3137 (The authentication protocol in Oracle Database 11g 1 and 2 allows ...)
-	TODO: check
+	NOT-FOR-US: Oracle Database
 CVE-2012-3136 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
 	- openjdk-7 7u3-2.1.2-1
 	- openjdk-6 <not-affected>




More information about the Secure-testing-commits mailing list