[Secure-testing-commits] r26389 - data/CVE

[Henri Salo]

Author: fgeek-guest
Date: 2014-04-01 09:32:40 +0000 (Tue, 01 Apr 2014)
New Revision: 26389

Modified:
   data/CVE/list
Log:
NFU

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-04-01 09:23:33 UTC (rev 26388)
+++ data/CVE/list	2014-04-01 09:32:40 UTC (rev 26389)
@@ -16,9 +16,9 @@
 CVE-2014-2674
 	RESERVED
 CVE-2014-2671 (Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows Media Player
 CVE-2014-2670 (Cross-site scripting (XSS) vulnerability in Properties.do in ZOHO ...)
-	TODO: check
+	NOT-FOR-US: ZOHO ManageEngine OpStor
 CVE-2014-2666
 	RESERVED
 CVE-2014-2665
@@ -42,7 +42,7 @@
 CVE-2014-2654
 	RESERVED
 CVE-2013-7346 (Cross-site request forgery (CSRF) vulnerability in Symphony CMS before ...)
-	TODO: check
+	NOT-FOR-US: Symphony CMS
 CVE-2013-XXXX [several XSS]
 	- shaarli <unfixed> (bug #743252)
 	NOTE: https://github.com/sebsauvage/Shaarli/commit/53da201749f8f362323ef278bf338f1d9f7a925a
@@ -4083,7 +4083,7 @@
 CVE-2014-0905
 	RESERVED
 CVE-2014-0904 (The update process in IBM Security AppScan Standard 7.9 through 8.8 ...)
-	TODO: check
+	NOT-FOR-US: IBM Security AppScan Standard
 CVE-2014-0903
 	RESERVED
 CVE-2014-0902
@@ -4117,13 +4117,13 @@
 CVE-2014-0888
 	RESERVED
 CVE-2014-0887 (The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before ...)
-	TODO: check
+	NOT-FOR-US: IBM Lotus Protector for Mail Security
 CVE-2014-0886 (The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before ...)
-	TODO: check
+	NOT-FOR-US: IBM Lotus Protector for Mail Security
 CVE-2014-0885 (Cross-site request forgery (CSRF) vulnerability in the Admin Web UI in ...)
-	TODO: check
+	NOT-FOR-US: IBM Lotus Protector for Mail Security
 CVE-2014-0884 (Cross-site scripting (XSS) vulnerability in the Admin Web UI in IBM ...)
-	TODO: check
+	NOT-FOR-US: IBM Lotus Protector for Mail Security
 CVE-2014-0883
 	RESERVED
 CVE-2014-0882
@@ -4131,7 +4131,7 @@
 CVE-2014-0881
 	RESERVED
 CVE-2014-0880 (IBM SAN Volume Controller; Storwize V3500, V3700, V5000, and V7000; ...)
-	TODO: check
+	NOT-FOR-US: IBM SAN Volume Controller
 CVE-2014-0879 (Stack-based buffer overflow in the Taskmaster Capture ActiveX control ...)
 	NOT-FOR-US: IBM Datacap Taskmaster Capture
 CVE-2014-0878
@@ -11059,11 +11059,11 @@
 CVE-2013-5446 (The console on IBM WebSphere DataPower XC10 appliances 2.1.0 and 2.5.0 ...)
 	NOT-FOR-US: IBM WebSphere DataPower XC10 appliances
 CVE-2013-5445 (IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before ...)
-	TODO: check
+	NOT-FOR-US: IBM Cognos
 CVE-2013-5444 (The server in IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, ...)
-	TODO: check
+	NOT-FOR-US: IBM Cognos
 CVE-2013-5443 (Cross-site request forgery (CSRF) vulnerability in IBM Cognos Express ...)
-	TODO: check
+	NOT-FOR-US: IBM Cognos
 CVE-2013-5442 (Cross-site scripting (XSS) vulnerability in the Local Management ...)
 	NOT-FOR-US: IBM
 CVE-2013-5441
@@ -14942,9 +14942,9 @@
 CVE-2013-3999 (Cross-site scripting (XSS) vulnerability in IBM Social Media Analytics ...)
 	NOT-FOR-US: IBM Social Media Analytics
 CVE-2013-3998 (CRLF injection vulnerability in the Web Application Enterprise Console ...)
-	TODO: check
+	NOT-FOR-US: IBM InfoSphere
 CVE-2013-3997 (Open redirect vulnerability in the Web Application Enterprise Console ...)
-	TODO: check
+	NOT-FOR-US: IBM InfoSphere
 CVE-2013-3996 (IBM InfoSphere BigInsights 1.1 through 2.1 does not properly handle ...)
 	NOT-FOR-US: IBM
 CVE-2013-3995 (Cross-site scripting (XSS) vulnerability in IBM InfoSphere BigInsights ...)