[Secure-testing-commits] r23061 - data/CVE

[Henri Salo]

Author: fgeek-guest
Date: 2013-07-24 17:35:31 +0000 (Wed, 24 Jul 2013)
New Revision: 23061

Modified:
   data/CVE/list
Log:
request-tracker issues, NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-07-24 16:34:38 UTC (rev 23060)
+++ data/CVE/list	2013-07-24 17:35:31 UTC (rev 23061)
@@ -369,6 +369,18 @@
 	RESERVED
 	- otrs2 3.2.9-1
 	NOTE: http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2013-05/
+CVE-2012-6581
+	- request-tracker3.8 <unfixed>
+	- request-tracker4 <unfixed>
+CVE-2012-6580
+	- request-tracker3.8 <unfixed>
+	- request-tracker4 <unfixed>
+CVE-2012-6579
+	- request-tracker3.8 <unfixed>
+	- request-tracker4 <unfixed>
+CVE-2012-6578
+	- request-tracker3.8 <unfixed>
+	- request-tracker4 <unfixed>
 CVE-2012-6577 (SQL injection vulnerability in the Formhandler extension before 1.4.1 ...)
 	NOT-FOR-US: Formhandler TYPO3 extension
 CVE-2012-6576 (Cross-site scripting (XSS) vulnerability in the PRH Search module ...)
@@ -3226,12 +3238,13 @@
 	RESERVED
 CVE-2013-3438
 	RESERVED
+	NOT-FOR-US: Cisco
 CVE-2013-3437 (SQL injection vulnerability in the management application in Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2013-3436 (The default configuration of the Group Encrypted Transport VPN (GET ...)
 	NOT-FOR-US: Cisco IOS
 CVE-2013-3435 (The Cisco Unified IP Conference Station 7937G allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2013-3434 (Untrusted search path vulnerability in Cisco Unified Communications ...)
 	NOT-FOR-US: Cisco
 CVE-2013-3433 (Untrusted search path vulnerability in Cisco Unified Communications ...)