[Secure-testing-commits] r23433 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Mon Aug 26 10:29:44 UTC 2013
Author: jmm
Date: 2013-08-26 10:29:44 +0000 (Mon, 26 Aug 2013)
New Revision: 23433
Modified:
data/CVE/list
Log:
znc fixed
puppet not-affected
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-26 07:54:06 UTC (rev 23432)
+++ data/CVE/list 2013-08-26 10:29:44 UTC (rev 23433)
@@ -1232,7 +1232,7 @@
CVE-2013-4963
RESERVED
CVE-2013-4962 (The reset password page in Puppet Enterprise before 3.0.1 does not ...)
- TODO: check
+ - puppet <not-affected> (Only affects Puppet Enterprise)
CVE-2013-4961 (Puppet Enterprise before 3.0.1 includes version information for the ...)
- puppet <not-affected> (Only affects Puppet Enterprise)
CVE-2013-4960
@@ -1458,7 +1458,7 @@
CVE-2013-4882 (Multiple SQL injection vulnerabilities in McAfee ePolicy Orchestrator ...)
NOT-FOR-US: McAfee ePolicy Orchestrator
CVE-2013-4881 (Cross-site request forgery (CSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: BigTree CMS
CVE-2013-4880 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: BigTree CMS
CVE-2013-4879 (SQL injection vulnerability in core/inc/bigtree/cms.php in BigTree CMS ...)
@@ -1614,7 +1614,7 @@
CVE-2013-4809
RESERVED
CVE-2013-4808 (Unspecified vulnerability in HP Service Manager 7.11, 9.21, 9.30, and ...)
- TODO: check
+ NOT-FOR-US: HP
CVE-2013-4807 (Unspecified vulnerability on the HP LaserJet Pro P1102w, P1606dn, ...)
NOT-FOR-US: HP
CVE-2013-4806 (The OSPF implementation on HP JD9##A routers; HP J4###A, J484#B, ...)
@@ -4844,7 +4844,7 @@
CVE-2013-3454 (Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, ...)
NOT-FOR-US: Cisco
CVE-2013-3453 (Memory leak in Cisco Unified Communications Manager IM and Presence ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-3452
RESERVED
CVE-2013-3451 (Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco ...)
@@ -5134,7 +5134,7 @@
CVE-2013-3320
RESERVED
CVE-2013-3319 (The GetComputerSystem method in the HostControl service in SAP ...)
- TODO: check
+ NOT-FOR-US: SAP Netweaver
CVE-2013-3318
RESERVED
CVE-2013-3317
@@ -5786,7 +5786,7 @@
CVE-2013-3030
RESERVED
CVE-2013-3029 (Cross-site request forgery (CSRF) vulnerability in the Administrative ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere
CVE-2013-3028 (Multiple buffer overflows in mqm programs in IBM WebSphere MQ 7.0.x ...)
NOT-FOR-US: IBM WebSphere
CVE-2013-3027 (Integer overflow in the DWA9W ActiveX control in iNotes in IBM Domino ...)
@@ -5812,7 +5812,7 @@
CVE-2013-3017
RESERVED
CVE-2013-3016 (IBM WebSphere Portal 6.1, 7.0, and 8.0 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere
CVE-2013-3015
RESERVED
CVE-2013-3014
@@ -5886,13 +5886,13 @@
CVE-2013-2980 (Cross-site request forgery (CSRF) vulnerability in the Web Console in ...)
NOT-FOR-US: IBM Data Studio
CVE-2013-2979 (Directory traversal vulnerability in IBM Optim Performance Manager ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2978
RESERVED
CVE-2013-2977 (Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and ...)
NOT-FOR-US: IBM Notes
CVE-2013-2976 (The Administrative console in IBM WebSphere Application Server (WAS) ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2975
RESERVED
CVE-2013-2974
@@ -8205,7 +8205,7 @@
NOTE: Non-issue, calling application need to perform sanitising
CVE-2013-2130 [null pointer dereference in webadmin]
RESERVED
- - znc <unfixed> (bug #720632)
+ - znc 1.0-5 (bug #720632)
[squeeze] - znc <not-affected> (Vulnerable code not present)
[wheezy] - znc <not-affected> (Vulnerable code not present)
CVE-2013-2129 (Cross-site scripting (XSS) vulnerability in the Webform module 6.x-3.x ...)
More information about the Secure-testing-commits
mailing list