[Secure-testing-commits] r23743 - data/CVE

Federico Ceratto federico-guest at alioth.debian.org
Thu Sep 19 21:30:58 UTC 2013 

Author: federico-guest
Date: 2013-09-19 21:30:58 +0000 (Thu, 19 Sep 2013)
New Revision: 23743

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-09-19 21:14:23 UTC (rev 23742)
+++ data/CVE/list	2013-09-19 21:30:58 UTC (rev 23743)
@@ -319,7 +319,7 @@
 CVE-2013-5752
 	RESERVED
 CVE-2013-5751 (Directory traversal vulnerability in SAP NetWeaver 7.x allows remote ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver 7.x
 CVE-2013-5750
 	RESERVED
 CVE-2013-5749
@@ -427,7 +427,7 @@
 	- kfreebsd-9 9.2~svn255465-1 (bug #722337)
 	- kfreebsd-8 <removed>
 CVE-2013-5709 (The authentication implementation in the web server on Siemens ...)
-	TODO: check
+	NOT-FOR-US: Siemens SCALANCE X-200
 CVE-2013-5708 (Coursemill Learning Management System (LMS) 6.8 constructs secret ...)
 	NOT-FOR-US: Coursemill Learning Management System
 CVE-2013-5707 (Multiple cross-site scripting (XSS) vulnerabilities in Coursemill ...)
@@ -1207,7 +1207,7 @@
 CVE-2013-5370
 	RESERVED
 CVE-2013-5369 (IBM SPSS Analytical Decision Management 6.1 before IF1, 6.2 before ...)
-	TODO: check
+	NOT-FOR-US: IBM SPSS Analytical Decision Management
 CVE-2013-5368
 	RESERVED
 CVE-2013-5367
@@ -4457,9 +4457,9 @@
 CVE-2013-4039 (IBM WebSphere Extended Deployment Compute Grid 8.0 before 8.0.0.3 ...)
 	NOT-FOR-US: IBM WebSphere
 CVE-2013-4038 (The Intelligent Platform Management Interface (IPMI) implementation in ...)
-	TODO: check
+	NOT-FOR-US: IBM BladeCenter
 CVE-2013-4037 (The RAKP protocol support in the Intelligent Platform Management ...)
-	TODO: check
+	NOT-FOR-US: IBM BladeCenter
 CVE-2013-4036
 	RESERVED
 CVE-2013-4035
@@ -4471,7 +4471,7 @@
 CVE-2013-4032
 	RESERVED
 CVE-2013-4031 (The Intelligent Platform Management Interface (IPMI) implementation in ...)
-	TODO: check
+	NOT-FOR-US: IBM BladeCenter
 CVE-2013-4030
 	RESERVED
 CVE-2013-4029
@@ -4669,7 +4669,7 @@
 CVE-2013-3935
 	RESERVED
 CVE-2013-3934 (Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as ...)
-	TODO: check
+	NOT-FOR-US: Kingsoft Office 2013
 CVE-2013-3933
 	RESERVED
 CVE-2013-3932
@@ -4749,7 +4749,7 @@
 CVE-2013-3894
 	RESERVED
 CVE-2013-3893 (Use-after-free vulnerability in the SetMouseCapture implementation in ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2013-3892
 	RESERVED
 CVE-2013-3891
@@ -5395,23 +5395,23 @@
 CVE-2013-3616
 	RESERVED
 CVE-2013-3615 (Dahua DVR appliances use a password-hash algorithm with a short hash ...)
-	TODO: check
+	NOT-FOR-US: Dahua DVR
 CVE-2013-3614 (Dahua DVR appliances have a small value for the maximum password ...)
-	TODO: check
+	NOT-FOR-US: Dahua DVR
 CVE-2013-3613 (Dahua DVR appliances do not properly restrict UPnP requests, which ...)
-	TODO: check
+	NOT-FOR-US: Dahua DVR
 CVE-2013-3612 (Dahua DVR appliances have a hardcoded password for (1) the root ...)
-	TODO: check
+	NOT-FOR-US: Dahua DVR
 CVE-2013-3611
 	RESERVED
 CVE-2013-3610
 	RESERVED
 CVE-2013-3609 (The web interface in the Intelligent Platform Management Interface ...)
-	TODO: check
+	NOT-FOR-US: Intelligent Platform Management Interface
 CVE-2013-3608 (The web interface in the Intelligent Platform Management Interface ...)
-	TODO: check
+	NOT-FOR-US: Intelligent Platform Management Interface
 CVE-2013-3607 (Multiple stack-based buffer overflows in the web interface in the ...)
-	TODO: check
+	NOT-FOR-US: Intelligent Platform Management Interface
 CVE-2013-3606
 	RESERVED
 CVE-2013-3605 (Cross-site request forgery (CSRF) vulnerability in Coursemill Learning ...)
@@ -7296,7 +7296,7 @@
 CVE-2013-2789 (The Kepware DNP Master Driver for the KEPServerEX Communications ...)
 	NOT-FOR-US: Kepware
 CVE-2013-2788 (The DNP3 Slave service in SUBNET Solutions SubSTATION Server 2.7.0033 ...)
-	TODO: check
+	NOT-FOR-US: SUBNET Solutions SubSTATION Server
 CVE-2013-2787
 	RESERVED
 CVE-2013-2786 (Alstom Grid MiCOM S1 Agile before 1.0.3 and Alstom Grid MiCOM S1 ...)
@@ -12450,15 +12450,15 @@
 CVE-2013-1030 (mdmclient in Mobile Device Management in Apple Mac OS X before 10.8.5 ...)
 	TODO: check
 CVE-2013-1029 (The kernel in Apple Mac OS X before 10.8.5 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2013-1028 (The IPSec implementation in Apple Mac OS X before 10.8.5, when Hybrid ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2013-1027 (Installer in Apple Mac OS X before 10.8.5 provides an option to ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2013-1026 (Buffer overflow in ImageIO in Apple Mac OS X before 10.8.5 allows ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2013-1025 (Buffer overflow in CoreGraphics in Apple Mac OS X before 10.8.5 allows ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2013-1024 (CoreMedia Playback in Apple Mac OS X before 10.8.4 does not properly ...)
 	NOT-FOR-US: CoreMedia Playback
 CVE-2013-1023 (WebKit, as used in Apple Safari before 6.0.5, allows remote attackers ...)

More information about the Secure-testing-commits mailing list