[Secure-testing-commits] r22154 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Fri May 3 18:58:11 UTC 2013
Author: carnil
Date: 2013-05-03 18:58:11 +0000 (Fri, 03 May 2013)
New Revision: 22154
Modified:
data/CVE/list
Log:
add some NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-05-03 16:06:36 UTC (rev 22153)
+++ data/CVE/list 2013-05-03 18:58:11 UTC (rev 22154)
@@ -17,7 +17,7 @@
CVE-2013-3310
RESERVED
CVE-2009-5135 (The Java XML parser in Echo before 2.1.1 and 3.x before 3.0.b6 allows ...)
- TODO: check
+ NOT-FOR-US: Echo
CVE-2013-3309
RESERVED
CVE-2013-3308
@@ -557,11 +557,11 @@
CVE-2013-3064
RESERVED
CVE-2013-3063 (SAP BASIS Communication Services 4.6B through 7.30 allows remote ...)
- TODO: check
+ NOT-FOR-US: SAP BASIS Communication Services
CVE-2013-3062 (The CP_RC_TRANSACTION_CALL_BY_SET function in the Engineering ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-3061 (The ISHMED-PATRED_TRANSACT_RFCCALL function in the IS-H ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-3060 (The web console in Apache ActiveMQ before 5.8.0 does not require ...)
- activemq <not-affected> (Web console not provided in Debian package, see #702670)
CVE-2013-3059
@@ -2240,7 +2240,7 @@
CVE-2013-2322
RESERVED
CVE-2013-2321 (Cross-site scripting (XSS) vulnerability in HP Service Manager Web ...)
- TODO: check
+ NOT-FOR-US: HP Service Manager
CVE-2013-2320
RESERVED
CVE-2013-2319
@@ -6166,7 +6166,7 @@
CVE-2013-0729
RESERVED
CVE-2013-0728 (Multiple stack-based buffer overflows in NCSAddOn.dll in the ERDAS ...)
- TODO: check
+ NOT-FOR-US: ERDAS ECWP Browser Plugin
CVE-2013-0727 (Multiple untrusted search path vulnerabilities in Global Mapper 14.1.0 ...)
NOT-FOR-US: Global Mapper
CVE-2013-0726
@@ -8039,7 +8039,7 @@
CVE-2013-0128 (The Contact Customer Support feature in the TigerText Free Private ...)
NOT-FOR-US: TigerText
CVE-2013-0127 (IBM Lotus Notes 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before ...)
- TODO: check
+ NOT-FOR-US: IBM Lotus Notes
CVE-2013-0126 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
NOT-FOR-US: Verizon router
CVE-2013-0125 (Cross-site scripting (XSS) vulnerability in fileview.asp in C2 ...)
@@ -11155,7 +11155,7 @@
CVE-2012-5223 (The proc_deutf function in includes/functions_vbseocp_abstract.php in ...)
NOT-FOR-US: vBSEO
CVE-2012-5222 (HP Service Manager Web Tier 9.31 before 9.31.2004 p2 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP Service Manager
CVE-2012-5221 (Unspecified vulnerability on the HP LaserJet 4xxx, 5200, 90xx, M30xx, ...)
TODO: check
CVE-2012-5220 (Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, ...)
@@ -11781,7 +11781,7 @@
CVE-2012-4953 (The decomposer engine in Symantec Endpoint Protection (SEP) 11.0, ...)
NOT-FOR-US: Symantec Endpoint Protection
CVE-2012-4952 (Henry Schein Dentrix G5 before 15.1.294 has a single internal-database ...)
- TODO: check
+ NOT-FOR-US: Dentrix
CVE-2012-4951 (Multiple SQL injection vulnerabilities in terminal/paramedit.aspx in ...)
NOT-FOR-US: VeriFone VeriCentre Web Console
CVE-2012-4950 (Cross-site scripting (XSS) vulnerability in the Keyword Search page in ...)
More information about the Secure-testing-commits
mailing list