[Secure-testing-commits] r21166 - data/CVE
Federico Ceratto
federico-guest at alioth.debian.org
Wed Feb 6 13:34:57 UTC 2013
Author: federico-guest
Date: 2013-02-06 13:34:57 +0000 (Wed, 06 Feb 2013)
New Revision: 21166
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-02-06 13:01:51 UTC (rev 21165)
+++ data/CVE/list 2013-02-06 13:34:57 UTC (rev 21166)
@@ -323,7 +323,7 @@
- openjdk-6 <not-affected> (JavaFX not part of OpenJDK)
- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
CVE-2013-1471 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: Fortinet FortiMail
CVE-2012-6530 (Stack-based buffer overflow in Sysax Multi Server before 5.52, when ...)
TODO: check
CVE-2012-6529 (Multiple SQL injection vulnerabilities in Marinet CMS allow remote ...)
@@ -345,7 +345,7 @@
CVE-2011-5255 (Multiple cross-site scripting (XSS) vulnerabilities in admin/login in ...)
TODO: check
CVE-2010-5287 (SQL injection vulnerability in default.php in Cornerstone Technologies ...)
- TODO: check
+ NOT-FOR-US: Cornerstone Technologies webConductor
CVE-2013-1581 (The dissect_pft_fec_detailed function in ...)
- wireshark <unfixed> (unimportant)
NOTE: Not suitable for code injection
@@ -393,9 +393,9 @@
CVE-2013-1463
RESERVED
CVE-2013-1462 (Integer signedness error in the ExecuteSoapAction function in the ...)
- TODO: check
+ NOT-FOR-US: MiniUPnP MiniUPnPd
CVE-2013-1461 (The ExecuteSoapAction function in the SOAPAction handler in the HTTP ...)
- TODO: check
+ NOT-FOR-US: MiniUPnP MiniUPnPd
CVE-2013-1460
RESERVED
CVE-2013-1459
@@ -1164,9 +1164,9 @@
CVE-2013-1114
RESERVED
CVE-2013-1113 (Cross-site scripting (XSS) vulnerability in Cisco Unified ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Communications Domain Manager
CVE-2013-1112 (Cisco Carrier Routing System (CRS) allows remote attackers to cause a ...)
- TODO: check
+ NOT-FOR-US: Cisco Carrier Routing System
CVE-2013-1111
RESERVED
CVE-2013-1110 (Cisco WebEx Training Center allow remote authenticated users to bypass ...)
@@ -1464,7 +1464,7 @@
CVE-2013-0964 (The kernel in Apple iOS before 6.1 and Apple TV before 5.2 does not ...)
TODO: check
CVE-2013-0963 (Identity Services in Apple iOS before 6.1 does not properly handle ...)
- TODO: check
+ NOT-FOR-US: Identity Services in Apple iOS
CVE-2013-0962 (Cross-site scripting (XSS) vulnerability in WebKit in Apple iOS before ...)
TODO: check
CVE-2013-0961
@@ -2860,11 +2860,11 @@
CVE-2012-6353
RESERVED
CVE-2012-6352 (The Session Manager in IBM Sterling Connect:Direct through 4.1.0.3 on ...)
- TODO: check
+ NOT-FOR-US: IBM Sterling Connect:Direct
CVE-2012-6351
RESERVED
CVE-2012-6350 (Cross-site scripting (XSS) vulnerability in the Web component in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM Cognos TM1
CVE-2012-6349
RESERVED
CVE-2012-6348 (Centrify Deployment Manager 2.1.0.283, as distributed in Centrify ...)
@@ -3461,7 +3461,7 @@
CVE-2013-0230 (Stack-based buffer overflow in the ExecuteSoapAction function in the ...)
TODO: check
CVE-2013-0229 (The ProcessSSDPRequest function in minissdp.c in the SSDP handler in ...)
- TODO: check
+ NOT-FOR-US: MiniUPnP MiniUPnPd
CVE-2013-0228
RESERVED
CVE-2013-0227
@@ -4795,7 +4795,7 @@
[squeeze] - xen <no-dsa> (Experimental/unsupported feature)
[wheezy] - xen <no-dsa> (Experimental/unsupported feature)
CVE-2012-6029 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Cisco NAC Appliance
CVE-2012-6028
RESERVED
CVE-2012-6027
@@ -7771,7 +7771,7 @@
CVE-2012-4833 (fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not ...)
NOT-FOR-US: AIX
CVE-2012-4832 (Information Services Framework (ISF) in IBM InfoSphere Information ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere
CVE-2012-4831
RESERVED
CVE-2012-4830 (Unspecified vulnerability in IBM WebSphere Commerce 6.0 through ...)
@@ -7801,7 +7801,7 @@
- openjdk-6 <not-affected> (Vulnerabilities specific to IBM Java)
- openjdk-7 <not-affected> (Vulnerabilities specific to IBM Java)
CVE-2012-4819 (Cross-site scripting (XSS) vulnerability in InfoSphere Business ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere
CVE-2012-4818
RESERVED
CVE-2012-4817 (The NFSv4 client implementation in IBM AIX 5.3, 6.1, and 7.1, and VIOS ...)
@@ -8268,7 +8268,7 @@
CVE-2012-4697
RESERVED
CVE-2012-4696 (Buffer overflow in Beijer ADP 6.5.0-180_R1967 and 6.5.1-186_R2942, and ...)
- TODO: check
+ NOT-FOR-US: Beijer
CVE-2012-4695
RESERVED
CVE-2012-4694
@@ -12163,7 +12163,7 @@
CVE-2012-3269 (Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and ...)
NOT-FOR-US: HP Performance Insight
CVE-2012-3268 (Certain HP Access Controller, Fabric Module, Firewall, Router, Switch, ...)
- TODO: check
+ NOT-FOR-US: HP network devices
CVE-2012-3267 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.20 ...)
NOT-FOR-US: HP NNMi
CVE-2012-3266 (Unspecified vulnerability in IBRIX 6.1.196 through 6.1.251 on HP IBRIX ...)
@@ -18446,17 +18446,17 @@
CVE-2012-0706
RESERVED
CVE-2012-0705 (InfoSphere Import Export Manager in InfoSphere Information Server ...)
- TODO: check
+ NOT-FOR-US: InfoSphere Information Server
CVE-2012-0704
RESERVED
CVE-2012-0703 (Open redirect vulnerability in Information Services Framework (ISF) in ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Information Server
CVE-2012-0702 (Information Services Framework (ISF) in IBM InfoSphere Information ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Information Server
CVE-2012-0701 (The client applications in the DataStage Administrator client in ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Information Server
CVE-2012-0700 (The client in InfoSphere FastTrack 8.1 through 8.7 in IBM InfoSphere ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Information Server
CVE-2012-0699
RESERVED
CVE-2012-0698 (tcsd in TrouSerS before 0.3.10 allows remote attackers to cause a ...)
@@ -20463,11 +20463,11 @@
{DSA-2385-1}
- pdns 3.0-1.1 (high)
CVE-2012-0205 (InfoSphere Metadata Workbench (MWB) 8.1 through 8.7 in IBM InfoSphere ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Information Server
CVE-2012-0204 (Untrusted search path vulnerability in InfoSphere Import Export ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Information Server
CVE-2012-0203 (Cross-site scripting (XSS) vulnerability in InfoSphere Metadata ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Information Server
CVE-2012-0202 (Multiple stack-based buffer overflows in tm1admsd.exe in the Admin ...)
NOT-FOR-US: Admin Server in IBM Cognos TM1
CVE-2012-0201 (Stack-based buffer overflow in pcspref.dll in pcsws.exe in IBM ...)
More information about the Secure-testing-commits
mailing list