[Secure-testing-commits] r23494 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Aug 30 15:35:46 UTC 2013 

Author: jmm
Date: 2013-08-30 15:35:45 +0000 (Fri, 30 Aug 2013)
New Revision: 23494

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-08-30 14:18:24 UTC (rev 23493)
+++ data/CVE/list	2013-08-30 15:35:45 UTC (rev 23494)
@@ -1397,9 +1397,9 @@
 CVE-2013-4975
 	RESERVED
 CVE-2013-4974 (RealNetworks RealPlayer before 16.0.3.51, and RealPlayer SP 1.0 ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2013-4973 (Stack-based buffer overflow in RealNetworks RealPlayer before ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2013-4972
 	RESERVED
 CVE-2013-4971
@@ -2970,11 +2970,11 @@
 CVE-2013-4275
 	RESERVED
 CVE-2013-4274 (Cross-site scripting (XSS) vulnerability in the ...)
-	TODO: check
+	NOT-FOR-US: Drupal addon
 CVE-2013-4273
 	RESERVED
 CVE-2013-4272 (The BOTCHA Spam Prevention module 7.x-1.x before 7.x-1.6, 7.x-2.x ...)
-	TODO: check
+	NOT-FOR-US: Drupal addon
 CVE-2013-4271
 	RESERVED
 CVE-2013-4270
@@ -3072,7 +3072,6 @@
 	- tiff <unfixed>
 	- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2451
-	TODO: check
 CVE-2013-4242 (GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x ...)
 	{DSA-2731-1 DSA-2730-1}
 	- gnupg 1.4.14-1 (bug #717880)
@@ -3736,7 +3735,7 @@
 CVE-2013-4040
 	RESERVED
 CVE-2013-4039 (IBM WebSphere Extended Deployment Compute Grid 8.0 before 8.0.0.3 ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere
 CVE-2013-4038 (The Intelligent Platform Management Interface (IPMI) implementation in ...)
 	TODO: check
 CVE-2013-4037 (The RAKP protocol support in the Intelligent Platform Management ...)
@@ -3804,11 +3803,11 @@
 CVE-2013-4006
 	RESERVED
 CVE-2013-4005 (Cross-site scripting (XSS) vulnerability in the Administrative console ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere
 CVE-2013-4004 (Cross-site scripting (XSS) vulnerability in the Administrative console ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere
 CVE-2013-4003 (Multiple cross-site scripting (XSS) vulnerabilities in IBM TRIRIGA ...)
-	TODO: check
+	NOT-FOR-US: IBM TRIRIGA
 CVE-2013-4002 (Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM ...)
 	NOT-FOR-US: IBM JDK
 CVE-2013-4001

More information about the Secure-testing-commits mailing list