[Secure-testing-commits] r25550 - data/CVE

Helmut Grohne helmutg at moszumanska.debian.org
Thu Feb 6 17:16:17 UTC 2014 

Author: helmutg
Date: 2014-02-06 17:16:17 +0000 (Thu, 06 Feb 2014)
New Revision: 25550

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-02-06 15:46:31 UTC (rev 25549)
+++ data/CVE/list	2014-02-06 17:16:17 UTC (rev 25550)
@@ -1621,13 +1621,13 @@
 CVE-2013-7280 (Buffer overflow in HansoTools Hanso Player 2.1.0, 2.5.0, and earlier ...)
 	NOT-FOR-US: HansoTools Hanso Player
 CVE-2013-7279 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin S3 Video
 CVE-2013-7278 (SQL injection vulnerability in Naxtech CMS Afroditi 1.0 allows remote ...)
 	NOT-FOR-US: Naxtech CMS Afroditi
 CVE-2013-7277 (Multiple cross-site scripting (XSS) vulnerabilities in Andy's PHP ...)
 	NOT-FOR-US: Andy's PHP Knowledgebase (Aphpkb)
 CVE-2013-7276 (Cross-site scripting (XSS) vulnerability in inc/raf_form.php in the ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin Recommend to a friend
 CVE-2013-7275 (Cross-site scripting (XSS) vulnerability in misc.php in MyBB (aka ...)
 	NOT-FOR-US: MyBB
 CVE-2013-7274 (Cross-site scripting (XSS) vulnerability in Wallpaper Script 3.5.0082 ...)
@@ -6744,7 +6744,7 @@
 CVE-2013-6124
 	RESERVED
 CVE-2013-6123 (Multiple array index errors in ...)
-	TODO: check
+	NOT-FOR-US: Android Linux kernel
 CVE-2013-6122 (goodix_tool.c in the Goodix gt915 touchscreen driver for the Linux ...)
 	NOT-FOR-US: Goodix gt915 Android touchscreen driver
 CVE-2013-6121
@@ -7859,7 +7859,7 @@
 CVE-2012-6630 (Multiple cross-site scripting (XSS) vulnerabilities in the Media ...)
 	NOT-FOR-US: WordPress plugin Media Library Categories
 CVE-2012-6629 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin Newsletter Manager
 CVE-2012-6628 (Multiple cross-site scripting (XSS) vulnerabilities in the Newsletter ...)
 	NOT-FOR-US: WordPress plugin Newsletter Manager
 CVE-2012-6627 (Cross-site scripting (XSS) vulnerability in admin/test_mail.php in the ...)
@@ -7867,7 +7867,7 @@
 CVE-2012-6626 (SQL injection vulnerability in verify-user.php in b2ePMS 1.0 allows ...)
 	NOT-FOR-US: b2ePMS
 CVE-2012-6625 (SQL injection vulnerability in fs-admin/fs-admin.php in the ForumPress ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin WP Forum Server
 CVE-2012-6624 (Cross-site scripting (XSS) vulnerability in the SoundCloud Is Gold ...)
 	NOT-FOR-US: WordPress plugin SoundCloud Is Gold
 CVE-2012-6623 (Cross-site scripting (XSS) vulnerability in fs-admin/wpf-add-forum.php ...)
@@ -12953,7 +12953,7 @@
 CVE-2013-3714
 	RESERVED
 CVE-2013-3713 (The image creation configuration in aaa_base before 16.26.1 for ...)
-	TODO: check
+	NOT-FOR-US: openSUSE live installer
 CVE-2013-3712
 	RESERVED
 CVE-2013-3711
@@ -19712,7 +19712,8 @@
 CVE-2013-1350
 	RESERVED
 CVE-2013-1349 (Eval injection vulnerability in ajax.php in openSIS 4.5 through 5.2 ...)
-	TODO: check
+	NOT-FOR-US: openSIS
+	NOTE: Ubuntu package opensis
 CVE-2013-1348
 	RESERVED
 CVE-2013-1347 (Microsoft Internet Explorer 8 does not properly handle objects in ...)

More information about the Secure-testing-commits mailing list