[Secure-testing-commits] r24741 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Dec 13 19:35:17 UTC 2013 

Author: carnil
Date: 2013-12-13 19:35:17 +0000 (Fri, 13 Dec 2013)
New Revision: 24741

Modified:
   data/CVE/list
Log:
Add NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-12-13 18:45:49 UTC (rev 24740)
+++ data/CVE/list	2013-12-13 19:35:17 UTC (rev 24741)
@@ -45,9 +45,9 @@
 CVE-2013-7044
 	RESERVED
 CVE-2013-7043 (Multiple cross-site request forgery (CSRF) vulnerabilities on Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2013-7042 (SUSE Lifecycle Management Server (SLMS) before 1.3.7 uses ...)
-	TODO: check
+	NOT-FOR-US: SUSE Lifecycle Management Server
 CVE-2013-7037
 	RESERVED
 CVE-2013-7036
@@ -63,7 +63,7 @@
 CVE-2013-7031
 	RESERVED
 CVE-2013-7030 (** DISPUTED ** The TFTP service in Cisco Unified Communications ...)
-	TODO: check
+	NOT-FOR-US: Cisco Unified Communications Manager
 CVE-2013-7029
 	RESERVED
 CVE-2013-7028
@@ -1351,7 +1351,7 @@
 CVE-2013-6841
 	RESERVED
 CVE-2013-6840 (Siemens COMOS before 9.2.0.8.1, 10.0 before 10.0.3.1.40, and 10.1 ...)
-	TODO: check
+	NOT-FOR-US: Siemens COMOS
 CVE-2013-6839
 	RESERVED
 	NOT-FOR-US: InstantCMS
@@ -1660,7 +1660,7 @@
 CVE-2013-6709
 	RESERVED
 CVE-2013-6708 (Cisco Cloud Portal 9.4 allows remote attackers to read files of ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2013-6707 (Memory leak in the connection-manager implementation in Cisco Adaptive ...)
 	NOT-FOR-US: Cisco
 CVE-2013-6706 (The Cisco Express Forwarding processing module in Cisco IOS XE allows ...)
@@ -3900,7 +3900,7 @@
 CVE-2013-5764
 	RESERVED
 CVE-2013-5763 (Unspecified vulnerability in the Oracle Outside In Technology ...)
-	TODO: check
+	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-5762 (Unspecified vulnerability in the Oracle Siebel CTMS component in ...)
 	NOT-FOR-US: Oracle Siebel
 CVE-2013-5761 (Unspecified vulnerability in the Siebel Core - Server BizLogic Script ...)
@@ -4763,7 +4763,7 @@
 CVE-2013-5448 (Cross-site scripting (XSS) vulnerability in the Right Click Plugin ...)
 	NOT-FOR-US: IBM Security QRadar SIEM
 CVE-2013-5447 (Stack-based buffer overflow in IBM Forms Viewer 4.x before 4.0.0.3 and ...)
-	TODO: check
+	NOT-FOR-US: IBM Forms Viewer
 CVE-2013-5446 (The console on IBM WebSphere DataPower XC10 appliances 2.1.0 and 2.5.0 ...)
 	NOT-FOR-US: IBM WebSphere DataPower XC10 appliances
 CVE-2013-5445
@@ -4849,7 +4849,7 @@
 CVE-2013-5405
 	RESERVED
 CVE-2013-5404 (Cross-site scripting (XSS) vulnerability in the search implementation ...)
-	TODO: check
+	NOT-FOR-US: IBM Rational Quality Manager
 CVE-2013-5403 (Unspecified vulnerability on the IBM WebSphere DataPower XC10 ...)
 	NOT-FOR-US: IBM WebSphere
 CVE-2013-5402
@@ -4989,9 +4989,9 @@
 CVE-2013-5335
 	RESERVED
 CVE-2013-5334 (Adobe Shockwave Player before 12.0.7.148 allows attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Adobe Shockwave Player
 CVE-2013-5333 (Adobe Shockwave Player before 12.0.7.148 allows attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Adobe Shockwave Player
 CVE-2013-5332 (Adobe Flash Player before 11.7.700.257 and 11.8.x and 11.9.x before ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2013-5331 (Adobe Flash Player before 11.7.700.257 and 11.8.x and 11.9.x before ...)
@@ -9188,7 +9188,7 @@
 CVE-2013-3711
 	RESERVED
 CVE-2013-3710 (SUSE Lifecycle Management Server (SLMS) before 1.3.7 does not generate ...)
-	TODO: check
+	NOT-FOR-US: SUSE Lifecycle Management Server
 CVE-2013-3709
 	RESERVED
 CVE-2013-3708 (The id1.GetPrinterURLList function in Novell iPrint Client before 5.93 ...)
@@ -11461,9 +11461,9 @@
 CVE-2013-2753
 	RESERVED
 CVE-2013-2752 (Cross-site request forgery (CSRF) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: NETGEAR ReadyNAS RAIDiator
 CVE-2013-2751 (Eval injection vulnerability in frontview/lib/np_handler.pl in the ...)
-	TODO: check
+	NOT-FOR-US: NETGEAR ReadyNAS RAIDiator
 CVE-2013-2750
 	RESERVED
 CVE-2013-2749
@@ -28509,7 +28509,7 @@
 CVE-2012-3048
 	RESERVED
 CVE-2012-3047 (Cross-site scripting (XSS) vulnerability in the web-wizard setup page ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2012-3046
 	RESERVED
 CVE-2012-3045

More information about the Secure-testing-commits mailing list