[Secure-testing-commits] r23330 - data/CVE

Henri Salo fgeek-guest at alioth.debian.org
Fri Aug 16 05:48:18 UTC 2013 

Author: fgeek-guest
Date: 2013-08-16 05:48:18 +0000 (Fri, 16 Aug 2013)
New Revision: 23330

Modified:
   data/CVE/list
Log:
NFU

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-08-15 21:14:27 UTC (rev 23329)
+++ data/CVE/list	2013-08-16 05:48:18 UTC (rev 23330)
@@ -1,9 +1,9 @@
 CVE-2013-5122
 	RESERVED
 CVE-2013-5121 (SQL injection vulnerability in PHPFox before 3.6.0 (build6) allows ...)
-	TODO: check
+	NOT-FOR-US: PHPFox
 CVE-2013-5120 (SQL injection vulnerability in PHPFox before 3.6.0 (build4) allows ...)
-	TODO: check
+	NOT-FOR-US: PHPFox
 CVE-2013-5119
 	RESERVED
 CVE-2013-5118
@@ -47,11 +47,11 @@
 CVE-2013-5101
 	RESERVED
 CVE-2013-5100 (Cross-site scripting (XSS) vulnerability in the Static Methods since ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension Static Methods
 CVE-2013-5099 (Cross-site scripting (XSS) vulnerability in article.php in Anchor CMS ...)
-	TODO: check
+	NOT-FOR-US: Anchor CMS
 CVE-2013-5098 (Cross-site scripting (XSS) vulnerability in admin/admin.php in the ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin download-monitor
 CVE-2013-5097
 	RESERVED
 CVE-2013-5096
@@ -355,7 +355,7 @@
 CVE-2013-4944 (Cross-site scripting (XSS) vulnerability in the BuddyPress Extended ...)
 	NOT-FOR-US: BuddyPress 
 CVE-2013-4943 (The client application in Siemens COMOS before 9.1 Update 458, 9.2 ...)
-	TODO: check
+	NOT-FOR-US: Siemens COMOS
 CVE-2013-4942 (Cross-site scripting (XSS) vulnerability in flashuploader.swf in the ...)
 	- moodle 2.5.1-1
 	[squeeze] - moodle <not-affected> (Vulnerable code not present)
@@ -542,9 +542,9 @@
 CVE-2013-4881
 	RESERVED
 CVE-2013-4880 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: BigTree CMS
 CVE-2013-4879 (SQL injection vulnerability in core/inc/bigtree/cms.php in BigTree CMS ...)
-	TODO: check
+	NOT-FOR-US: BigTree CMS
 CVE-2013-4878 (The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on ...)
 	NOT-FOR-US: Parallels Plesk Panel
 CVE-2013-4877 (The Verizon Wireless Network Extender SCS-26UC4 and SCS-2U01 does not ...)
@@ -699,7 +699,7 @@
 CVE-2013-4807 (Unspecified vulnerability on the HP LaserJet Pro P1102w, P1606dn, ...)
 	NOT-FOR-US: HP
 CVE-2013-4806 (The OSPF implementation on HP JD9##A routers; HP J4###A, J484#B, ...)
-	TODO: check
+	NOT-FOR-US: HP routers
 CVE-2013-4805 (Unspecified vulnerability in HP Integrated Lights-Out 3 (aka iLO3) ...)
 	NOT-FOR-US: HP Integrated Lights-Out firmware
 CVE-2013-4804
@@ -736,7 +736,7 @@
 	RESERVED
 	- open-xchange <itp> (bug #269329)
 CVE-2013-4789 (SQL injection vulnerability in modules/rss/rss.php in Cotonti before ...)
-	TODO: check
+	NOT-FOR-US: Cotonti
 CVE-2013-4788 [Eglibc PTR MANGLE bug]
 	RESERVED
 	- eglibc <unfixed> (low; bug #717178)
@@ -801,7 +801,7 @@
 CVE-2013-4760
 	RESERVED
 CVE-2013-4759 (Multiple cross-site scripting (XSS) vulnerabilities in the Magnolia ...)
-	TODO: check
+	NOT-FOR-US: Magnolia CMS
 CVE-2013-4757
 	RESERVED
 CVE-2013-4756

More information about the Secure-testing-commits mailing list