[Secure-testing-commits] r25839 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Sat Feb 22 08:43:39 UTC 2014


Author: fgeek-guest
Date: 2014-02-22 08:43:39 +0000 (Sat, 22 Feb 2014)
New Revision: 25839

Modified:
   data/CVE/list
Log:
NFU

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-02-22 08:34:14 UTC (rev 25838)
+++ data/CVE/list	2014-02-22 08:43:39 UTC (rev 25839)
@@ -9389,7 +9389,7 @@
 CVE-2013-5401
 	RESERVED
 CVE-2013-5400 (An unspecified servlet in IBM Platform Symphony Developer Edition (DE) ...)
-	TODO: check
+	NOT-FOR-US: IBM Platform Symphony Developer Edition
 CVE-2013-5399
 	RESERVED
 CVE-2013-5398 (Unspecified vulnerability in the Webservice Axis Gateway in IBM ...)
@@ -9487,7 +9487,7 @@
 CVE-2013-5352
 	RESERVED
 CVE-2013-5351 (Heap-based buffer overflow in IrfanView before 4.37 allows remote ...)
-	TODO: check
+	NOT-FOR-US: IrfanView
 CVE-2013-5350 (The "Remember me" feature in the ...)
 	NOT-FOR-US: OpenPNE
 CVE-2013-5349 (Integer underflow in Picasa3.exe in Google Picasa before 3.9.0 Build ...)
@@ -10187,7 +10187,7 @@
 CVE-2013-5013 (Multiple cross-site scripting (XSS) vulnerabilities in the management ...)
 	NOT-FOR-US: Symantec WEB Gateway
 CVE-2013-5012 (Multiple SQL injection vulnerabilities in the management console on ...)
-	TODO: check
+	NOT-FOR-US: Symantec Web Gateway
 CVE-2013-5011 (Unquoted Windows search path vulnerability in the client in Symantec ...)
 	NOT-FOR-US: Symantec Endpoint Protection
 CVE-2013-5010 (The Application/Device Control (ADC) component in the client in ...)
@@ -10815,6 +10815,7 @@
 	- linux <not-affected> (Android-specific camera drivers)
 CVE-2013-4737 (The CONFIG_STRICT_MEMORY_RWX implementation for the Linux kernel 3.x, ...)
 	TODO: check
+	NOTE: https://www.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=4256415b296348ff16cd17a5b8f8dce4dea37328
 CVE-2013-4736 (Multiple integer overflows in the JPEG engine drivers in the MSM ...)
 	NOTE: https://www.codeaurora.org/projects/security-advisories/integer-overflow-and-signedness-issue-camera-jpeg-engines-cve-2013-4736
 	NOT-FOR-US: camera JPEG engines on Android Linux kernels
@@ -13188,7 +13189,7 @@
 CVE-2013-3989 (IBM Security AppScan Enterprise 8.x before 8.8 sends a cleartext ...)
 	NOT-FOR-US: IBM Security AppScan Enterprise
 CVE-2013-3988 (The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x ...)
-	TODO: check
+	NOT-FOR-US: IBM Sametime
 CVE-2013-3987
 	RESERVED
 CVE-2013-3986 (IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote attackers to cause ...)
@@ -13198,7 +13199,7 @@
 CVE-2013-3984
 	RESERVED
 CVE-2013-3983 (The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x ...)
-	TODO: check
+	NOT-FOR-US: IBM Sametime
 CVE-2013-3982
 	RESERVED
 CVE-2013-3981
@@ -13208,7 +13209,7 @@
 CVE-2013-3979 (Multiple cross-site scripting (XSS) vulnerabilities in the help pages ...)
 	NOT-FOR-US: IBM Cognos Command Center
 CVE-2013-3978 (The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x ...)
-	TODO: check
+	NOT-FOR-US: IBM Sametime
 CVE-2013-3977
 	RESERVED
 CVE-2013-3976
@@ -13301,7 +13302,7 @@
 CVE-2013-3934 (Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as ...)
 	NOT-FOR-US: Kingsoft Office 2013
 CVE-2013-3933 (Cross-site scripting (XSS) vulnerability in the JoomShopping ...)
-	TODO: check
+	NOT-FOR-US: Joomla component com_joomshopping
 CVE-2013-3932
 	RESERVED
 CVE-2013-3931




More information about the Secure-testing-commits mailing list