[Secure-testing-commits] r26607 - data/CVE

Raphael Geissert atomo64-guest at moszumanska.debian.org
Fri Apr 18 08:31:48 UTC 2014 

Author: atomo64-guest
Date: 2014-04-18 08:31:48 +0000 (Fri, 18 Apr 2014)
New Revision: 26607

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-04-18 08:19:19 UTC (rev 26606)
+++ data/CVE/list	2014-04-18 08:31:48 UTC (rev 26607)
@@ -306,31 +306,31 @@
 CVE-2014-2731
 	RESERVED
 CVE-2013-7367 (SAP Enterprise Portal does not properly restrict access to the ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7366 (The SAP Software Deployment Manager (SDM), in certain unspecified ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7365 (Cross-site scripting (XSS) vulnerability in SAP Enterprise Portal ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7364 (An unspecified J2EE core service in the J2EE Engine in SAP NetWeaver ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7363 (Unspecified vulnerability in the Diagnostics (SMD) agent in SAP ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7362 (An unspecified RFC function in SAP CCMS Agent allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7361 (Directory traversal vulnerability in SAP CMS and CM Services allows ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7360 (Unspecified vulnerability in SAP adminadapter allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7359 (Unspecified vulnerability in SAP Mobile Infrastructure allows remote ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7358 (Unspecified vulnerability in SAP Guided Procedures Archive Monitor ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7357 (Unspecified vulnerability in the configuration service in SAP J2EE ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7356 (Unspecified vulnerability in the SAP CCMS / Database Monitors for ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2013-7355 (SQL injection vulnerability in SAP BI Universal Data Integration ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2012-6645 (Cross-site scripting (XSS) vulnerability in the autocomplete ...)
 	TODO: check
 CVE-2012-6644 (Multiple cross-site scripting (XSS) vulnerabilities in ClipBucket 2.6 ...)
@@ -485,7 +485,7 @@
 CVE-2014-2691
 	RESERVED
 CVE-2014-2690 (Citrix VDI-in-a-Box 5.3.x before 5.3.6 and 5.4.x before 5.4.3 allows ...)
-	TODO: check
+	NOT-FOR-US: Citrix VDI-in-a-Box
 CVE-2014-2689
 	RESERVED
 CVE-2014-2688
@@ -1315,7 +1315,7 @@
 CVE-2014-2385
 	RESERVED
 CVE-2014-2384 (vmx86.sys in VMware Workstation 10.0.1 build 1379776 and VMware Player ...)
-	TODO: check
+	NOT-FOR-US: VMware on Windows
 CVE-2014-2383
 	RESERVED
 CVE-2014-2382
@@ -1853,13 +1853,13 @@
 CVE-2014-2143 (The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE ...)
 	NOT-FOR-US: Cisco
 CVE-2014-2142 (Cisco ONS 15454 controller cards with software 10.0 and earlier allow ...)
-	TODO: check
+	NOT-FOR-US: Cisco ONS
 CVE-2014-2141 (The session-termination functionality on Cisco ONS 15454 controller ...)
-	TODO: check
+	NOT-FOR-US: Cisco ONS
 CVE-2014-2140 (Cisco ONS 15454 controller cards with software 9.6 and earlier allow ...)
-	TODO: check
+	NOT-FOR-US: Cisco ONS
 CVE-2014-2139 (Cisco ONS 15454 controller cards with software 9.6 and earlier allow ...)
-	TODO: check
+	NOT-FOR-US: Cisco ONS
 CVE-2014-2138 (CRLF injection vulnerability in the web framework in Cisco Security ...)
 	NOT-FOR-US: Cisco Security Manager
 CVE-2014-2137 (CRLF injection vulnerability in the web framework in Cisco Web ...)
@@ -1879,13 +1879,13 @@
 CVE-2014-2130
 	RESERVED
 CVE-2014-2129 (The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) ...)
-	TODO: check
+	NOT-FOR-US: Cisco Adaptive Security Appliance
 CVE-2014-2128 (The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) ...)
-	TODO: check
+	NOT-FOR-US: Cisco Adaptive Security Appliance
 CVE-2014-2127 (Cisco Adaptive Security Appliance (ASA) Software 8.x before 8.2(5.48), ...)
-	TODO: check
+	NOT-FOR-US: Cisco Adaptive Security Appliance
 CVE-2014-2126 (Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47), ...)
-	TODO: check
+	NOT-FOR-US: Cisco Adaptive Security Appliance
 CVE-2014-2125 (Cross-site scripting (XSS) vulnerability in the Web Inbox in Cisco ...)
 	NOT-FOR-US: Cisco Unity Connection Server
 CVE-2014-2124 (Cisco IOS 15.1(2)SY3 and earlier, when used with Supervisor Engine 2T ...)
@@ -2997,25 +2997,25 @@
 CVE-2014-1761 (Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 ...)
 	NOT-FOR-US: Microsoft Word
 CVE-2014-1760 (Microsoft Internet Explorer 11 allows remote attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-1759 (pubconv.dll in Microsoft Publisher 2003 SP3 and 2007 SP3 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Publisher
 CVE-2014-1758 (Stack-based buffer overflow in Microsoft Word 2003 SP3 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Word
 CVE-2014-1757 (Microsoft Word 2007 SP3 and 2010 SP1 and SP2, and Office Compatibility ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Word
 CVE-2014-1756
 	RESERVED
 CVE-2014-1755 (Microsoft Internet Explorer 9 allows remote attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-1754
 	RESERVED
 CVE-2014-1753 (Microsoft Internet Explorer 6 through 9 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-1752 (Microsoft Internet Explorer 6 and 7 allows remote attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-1751 (Microsoft Internet Explorer 9 allows remote attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-1749
 	RESERVED
 CVE-2014-1748

More information about the Secure-testing-commits mailing list