[Secure-testing-commits] r22645 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Mon Jun 17 14:22:21 UTC 2013 

Author: carnil
Date: 2013-06-17 14:22:21 +0000 (Mon, 17 Jun 2013)
New Revision: 22645

Modified:
   data/CVE/list
Log:
add couple of NFUs, one linux issue, to be checked which version fixed the issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-06-17 09:14:24 UTC (rev 22644)
+++ data/CVE/list	2013-06-17 14:22:21 UTC (rev 22645)
@@ -1291,7 +1291,7 @@
 CVE-2013-3971
 	RESERVED
 CVE-2013-3970 (Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS ...)
-	TODO: check
+	NOT-FOR-US: Juniper Junos Pulse Secure Access Service
 CVE-2013-3969
 	RESERVED
 CVE-2013-3968
@@ -2002,7 +2002,7 @@
 CVE-2013-3646
 	RESERVED
 CVE-2013-3645 (Cross-site scripting (XSS) vulnerability in the Orchard.Comments ...)
-	TODO: check
+	NOT-FOR-US: Orchard
 CVE-2013-3644
 	RESERVED
 CVE-2013-3643
@@ -2142,11 +2142,11 @@
 CVE-2013-3576
 	RESERVED
 CVE-2013-3575 (hpdiags/frontend2/help/pageview.php in HP Insight Diagnostics ...)
-	TODO: check
+	NOT-FOR-US: HP Insight Diagnostics
 CVE-2013-3574 (Absolute path traversal vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: HP Insight Diagnostics
 CVE-2013-3573 (HP Insight Diagnostics 9.4.0.4710 allows remote attackers to conduct ...)
-	TODO: check
+	NOT-FOR-US: HP Insight Diagnostics
 CVE-2013-3572
 	RESERVED
 CVE-2013-3571 [FD leak]
@@ -2572,9 +2572,9 @@
 CVE-2013-3377
 	RESERVED
 CVE-2013-3376 (Open redirect vulnerability in the help page in Cisco Video ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2013-3375 (Cross-site scripting (XSS) vulnerability in the portal page in Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2013-3374
 	RESERVED
 	{DSA-2671-1 DSA-2670-1}
@@ -31027,6 +31027,8 @@
 	- libcap2 1:2.22-1 (low)
 	[squeeze] - libcap2 <no-dsa> (Minor issue)
 CVE-2011-4098 (The fallocate implementation in the GFS2 filesystem in the Linux ...)
+	- linux-2.6 <removed>
+	- linux <unfixed>
 	TODO: check
 CVE-2011-4097 (Integer overflow in the oom_badness function in mm/oom_kill.c in the ...)
 	- linux-2.6 3.0.0-6

More information about the Secure-testing-commits mailing list