[Secure-testing-commits] r24425 - data/CVE
Thijs Kinkhorst
thijs at moszumanska.debian.org
Mon Nov 25 08:00:40 UTC 2013
Author: thijs
Date: 2013-11-25 08:00:35 +0000 (Mon, 25 Nov 2013)
New Revision: 24425
Modified:
data/CVE/list
Log:
bsd, augeas, horizon
nfu's
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-11-25 07:07:31 UTC (rev 24424)
+++ data/CVE/list 2013-11-25 08:00:35 UTC (rev 24425)
@@ -9,7 +9,7 @@
CVE-2013-6853
RESERVED
CVE-2013-6852 (Cross-site request forgery (CSRF) vulnerability in html/json.html on ...)
- TODO: check
+ NOT-FOR-US: Hewlett-Packard network equipment
CVE-2013-6851
RESERVED
CVE-2013-6850
@@ -45,47 +45,50 @@
CVE-2013-6835
RESERVED
CVE-2013-6834 (The ql_eioctl function in sys/dev/qlxgbe/ql_ioctl.c in the kernel in ...)
- TODO: check
+ - kfreebsd-9 <unfixed>
+ - kfreebsd-10 <unfixed>
CVE-2013-6833 (The qls_eioctl function in sys/dev/qlxge/qls_ioctl.c in the kernel in ...)
- TODO: check
+ - kfreebsd-9 <unfixed>
+ - kfreebsd-10 <unfixed>
CVE-2013-6832 (The nand_ioctl function in sys/dev/nand/nand_geom.c in the nand driver ...)
- TODO: check
+ - kfreebsd-9 <unfixed>
+ - kfreebsd-10 <unfixed>
CVE-2013-6831 (PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms ...)
- TODO: check
+ NOT-FOR-US: PineApp Mail-SeCure
CVE-2013-6830 (admin/confnetworking.html in PineApp Mail-SeCure 3.70 and earlier on ...)
- TODO: check
+ NOT-FOR-US: PineApp Mail-SeCure
CVE-2013-6829 (admin/confnetworking.html in PineApp Mail-SeCure allows remote ...)
- TODO: check
+ NOT-FOR-US: PineApp Mail-SeCure
CVE-2013-6828 (admin/management.html in PineApp Mail-SeCure allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: PineApp Mail-SeCure
CVE-2013-6827 (Absolute path traversal vulnerability in admin/viewmsg.php in PineApp ...)
- TODO: check
+ NOT-FOR-US: PineApp Mail-SeCure
CVE-2013-6826 (cgi-bin/module//sysmanager/admin/SYSAdminUserDialog in Fortinet ...)
- TODO: check
+ NOT-FOR-US: Fortinet FortiAnalyzer
CVE-2013-6825
RESERVED
CVE-2013-6824
RESERVED
CVE-2013-6823 (GRMGApp in SAP NetWeaver allows remote attackers to bypass intended ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6822 (GRMGApp in SAP NetWeaver allows remote attackers to have unspecified ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6821 (Directory traversal vulnerability in the Exportability Check Service ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6820 (Unrestricted file upload vulnerability in the SAP NetWeaver ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6819 (Cross-site scripting (XSS) vulnerability in Performance Provider in ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6818 (SAP NetWeaver Logviewer 6.30, when running on Windows, allows remote ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6817 (Heap-based buffer overflow in SAP Network Interface Router (SAProuter) ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6816 (Multiple cross-site scripting (XSS) vulnerabilities in the (1) ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6815 (The SHSTI_UPLOAD_XML function in the Application Server for ABAP (AS ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6814 (The J2EE Engine in SAP NetWeaver 6.40, 7.02, and earlier allows remote ...)
- TODO: check
+ NOT-FOR-US: SAP
CVE-2013-6813
RESERVED
CVE-2013-6812
@@ -99,7 +102,7 @@
CVE-2013-6808
RESERVED
CVE-2012-6607 (The transform_save function in transform_save in Augeas before 1.0.0 ...)
- TODO: check
+ - augeas <unfixed>
CVE-2013-6869 (SQL injection vulnerability in the SRTT_GET_COUNT_BEFORE_KEY_RFC ...)
NOT-FOR-US: Sap NetWeaver
CVE-2013-6868 (SAP Sybase Adaptive Server Enterprise (ASE) 15.0.3 before 15.0.3 ...)
@@ -123,7 +126,7 @@
CVE-2013-6859 (SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3. ...)
NOT-FOR-US: SAP Sybase Adaptive Server Enterprise
CVE-2013-6858 (Multiple cross-site scripting (XSS) vulnerabilities in OpenStack ...)
- TODO: check
+ - horizon <unfixed>
CVE-2013-6807
RESERVED
CVE-2013-6806
@@ -342,9 +345,9 @@
CVE-2013-6700
RESERVED
CVE-2013-6699 (The Control and Provisioning of Wireless Access Points (CAPWAP) ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6698 (The web interface on Cisco Wireless LAN Controller (WLC) devices does ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6697
RESERVED
CVE-2013-6696
@@ -352,11 +355,11 @@
CVE-2013-6695
RESERVED
CVE-2013-6694 (The IPSec implementation in Cisco IOS allows remote attackers to cause ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6693 (The MLDP implementation in Cisco IOS 15.3(3)S and earlier on 7600 ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6692 (Cisco IOS XE 3.8S(.2) and earlier does not properly use a DHCP pool ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6691
RESERVED
CVE-2013-6690
@@ -1222,7 +1225,7 @@
CVE-2013-6313
RESERVED
CVE-2013-6312 (Unspecified vulnerability in IBM Rational Service Tester 8.3.x and ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-6311
RESERVED
CVE-2013-6310
@@ -3379,7 +3382,7 @@
CVE-2013-5388 (Cross-site scripting (XSS) vulnerability in iNotes in IBM Domino 8.5.3 ...)
NOT-FOR-US: IBM Domino
CVE-2013-5387 (Buffer overflow in IBM Platform Symphony 5.2, 6.1, and 6.1.1 allows ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-5386
RESERVED
CVE-2013-5385
@@ -4549,9 +4552,9 @@
CVE-2013-4844
RESERVED
CVE-2013-4843 (Unspecified vulnerability in HP Integrated Lights-Out 4 (iLO4) with ...)
- TODO: check
+ NOT-FOR-US: HP iLO
CVE-2013-4842 (Cross-site scripting (XSS) vulnerability in HP Integrated Lights-Out 4 ...)
- TODO: check
+ NOT-FOR-US: HP iLO
CVE-2013-4841
RESERVED
CVE-2013-4840
More information about the Secure-testing-commits
mailing list