[Secure-testing-commits] r23809 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Fri Sep 27 17:57:33 UTC 2013
Author: carnil
Date: 2013-09-27 17:57:33 +0000 (Fri, 27 Sep 2013)
New Revision: 23809
Modified:
data/CVE/list
Log:
Add round of NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-27 14:35:26 UTC (rev 23808)
+++ data/CVE/list 2013-09-27 17:57:33 UTC (rev 23809)
@@ -9,9 +9,9 @@
CVE-2013-5939
RESERVED
CVE-2013-5938 (Cross-site scripting (XSS) vulnerability in the Click2Sell Suite ...)
- TODO: check
+ NOT-FOR-US: Click2Sell Suite Drupal contributed module
CVE-2013-5937 (Cross-site request forgery (CSRF) vulnerability in the Click2Sell ...)
- TODO: check
+ NOT-FOR-US: Click2Sell Suite Drupal contributed module
CVE-2013-5936 (The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before ...)
TODO: check
CVE-2013-5935 (The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before ...)
@@ -1266,7 +1266,7 @@
CVE-2013-5374
RESERVED
CVE-2013-5373 (The RemoteClient component in IBM Rational ClearCase 8.0.0.03 through ...)
- TODO: check
+ NOT-FOR-US: IBM Rational ClearCase
CVE-2013-5372
RESERVED
CVE-2013-5371
@@ -1784,7 +1784,7 @@
CVE-2013-5119 (Zimbra Collaboration Suite (ZCS) 6.0.16 and earlier allows ...)
NOT-FOR-US: Zimbra Collaboration Suite
CVE-2013-5118 (Cross-site scripting (XSS) vulnerability in the Good for Enterprise ...)
- TODO: check
+ NOT-FOR-US: Good for Enterprise app for iOS
CVE-2013-5117
RESERVED
CVE-2013-5116
@@ -4573,13 +4573,13 @@
CVE-2013-4026
RESERVED
CVE-2013-4025 (IBM Data Studio Web Console 3.x before 3.2, Optim Performance Manager ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-4024 (IBM Data Studio Web Console 3.x before 3.2, Optim Performance Manager ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-4023
RESERVED
CVE-2013-4022 (IBM Data Studio Web Console 3.x before 3.2, Optim Performance Manager ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-4021
RESERVED
CVE-2013-4020
@@ -12543,13 +12543,13 @@
CVE-2013-1034 (Multiple cross-site scripting (XSS) vulnerabilities in Wiki Server in ...)
NOT-FOR-US: Apple Mac OS X Server
CVE-2013-1033 (Screen Lock in Apple Mac OS X before 10.8.5 does not properly track ...)
- TODO: check
+ NOT-FOR-US: Screen Lock in Apple Mac OS X
CVE-2013-1032 (QuickTime in Apple Mac OS X before 10.8.5 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: QuickTime in Apple Mac OS X
CVE-2013-1031 (Power Management in Apple Mac OS X before 10.8.5 does not properly ...)
- TODO: check
+ NOT-FOR-US: Power Management in Apple Mac OS X
CVE-2013-1030 (mdmclient in Mobile Device Management in Apple Mac OS X before 10.8.5 ...)
- TODO: check
+ NOT-FOR-US: Mobile Device Management in Apple Mac OS X
CVE-2013-1029 (The kernel in Apple Mac OS X before 10.8.5 allows remote attackers to ...)
NOT-FOR-US: Apple Mac OS X
CVE-2013-1028 (The IPSec implementation in Apple Mac OS X before 10.8.5, when Hybrid ...)
@@ -13978,7 +13978,7 @@
CVE-2013-0597 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Application ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2013-0596 (Cross-site scripting (XSS) vulnerability in the Administrative console ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Application Server
CVE-2013-0595 (Multiple cross-site scripting (XSS) vulnerabilities in iNotes 8.5.x in ...)
NOT-FOR-US: IBM Lotus Domino
CVE-2013-0594
@@ -18363,7 +18363,7 @@
CVE-2012-5339 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...)
- phpmyadmin <not-affected> (Only affects 3.5.x, not packaged yet, see #691728)
CVE-2012-5338 (Open redirect vulnerability in JForum 2.1.9 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: JForum
CVE-2012-5337 (Multiple cross-site scripting (XSS) vulnerabilities in jforum.page in ...)
NOT-FOR-US: jForum
CVE-2012-5336
@@ -21906,23 +21906,23 @@
CVE-2012-4095
RESERVED
CVE-2012-4094 (Buffer overflow in the Smart Call Home feature in the fabric ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4093 (The Manager component in Cisco Unified Computing System (UCS) allows ...)
NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4092 (The management interface in the Central Software component in Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4091
RESERVED
CVE-2012-4090
RESERVED
CVE-2012-4089 (MCTOOLS in the fabric interconnect in Cisco Unified Computing System ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4088 (The FTP server in Cisco Unified Computing System (UCS) has a hardcoded ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4087 (A cluster setup script for fabric interconnect devices in Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4086 (A setup script for fabric interconnect devices in Cisco Unified ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4085 (The Intelligent Platform Management Interface (IPMI) implementation in ...)
TODO: check
CVE-2012-4084
@@ -21936,9 +21936,9 @@
CVE-2012-4080
RESERVED
CVE-2012-4079 (The XML API service in the Fabric Interconnect component in Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4078 (The Baseboard Management Controller (BMC) in Cisco Unified Computing ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Computing System
CVE-2012-4077
RESERVED
CVE-2012-4076
@@ -25610,7 +25610,7 @@
- xen 4.1.3-4 (low; bug #688125)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-2625
CVE-2012-2624 (Stack-based buffer overflow in Logica HotScan allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Logica HotScan
CVE-2012-XXXX [two XSS]
- spip 2.1.14-1 (low; bug #672961)
[squeeze] - spip 2.1.1-3squeeze4
More information about the Secure-testing-commits
mailing list