[Secure-testing-commits] r25852 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Sun Feb 23 14:09:23 UTC 2014 

Author: fgeek-guest
Date: 2014-02-23 14:09:23 +0000 (Sun, 23 Feb 2014)
New Revision: 25852

Modified:
   data/CVE/list
Log:
NFU

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-02-23 14:06:11 UTC (rev 25851)
+++ data/CVE/list	2014-02-23 14:09:23 UTC (rev 25852)
@@ -154,7 +154,7 @@
 	[wheezy] - php5 <not-affected> (Vulnerable code was introduced in 5.5.0)
 	[squeeze] - php5 <not-affected> (Vulnerable code was introduced in 5.5.0)
 CVE-2014-2019 (The iCloud subsystem in Apple iOS before 7.1 allows physically ...)
-	TODO: check
+	NOT-FOR-US: Apple iOS
 CVE-2014-2018 (Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x ...)
 	TODO: check
 CVE-2014-2017
@@ -613,7 +613,7 @@
 CVE-2014-1862
 	RESERVED
 CVE-2014-1861 (The client in Jetro COCKPIT Secure Browsing (JCSB) 4.3.1 and 4.3.3 ...)
-	TODO: check
+	NOT-FOR-US: Jetro COCKPIT Secure Browsing
 CVE-2014-1859 [insecure temporary file use]
 	RESERVED
 	- python-numpy <unfixed> (bug #737778)
@@ -1104,7 +1104,7 @@
 	- chromium-browser 31.0.1650.63-1
 	[squeeze] - chromium-browser <end-of-life>
 CVE-2014-1680 (Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 ...)
-	TODO: check
+	NOT-FOR-US: Bandisoft Bandizip
 CVE-2014-1679
 	RESERVED
 	- open-xchange <itp> (bug #269329)
@@ -3540,9 +3540,9 @@
 	RESERVED
 	NOT-FOR-US: Flash plugin
 CVE-2014-0501 (Adobe Shockwave Player before 12.0.9.149 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Adobe Shockwave Player
 CVE-2014-0500 (Adobe Shockwave Player before 12.0.9.149 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Adobe Shockwave Player
 CVE-2014-0499
 	RESERVED
 	NOT-FOR-US: Flash plugin
@@ -4439,7 +4439,7 @@
 CVE-2014-0333
 	RESERVED
 CVE-2014-0332 (Cross-site scripting (XSS) vulnerability in mainPage in Dell SonicWALL ...)
-	TODO: check
+	NOT-FOR-US: Dell SonicWALL GMS
 CVE-2014-0331
 	RESERVED
 CVE-2014-0330 (Cross-site scripting (XSS) vulnerability in adminui/user_list.php on ...)
@@ -8653,7 +8653,7 @@
 CVE-2012-6628 (Multiple cross-site scripting (XSS) vulnerabilities in the Newsletter ...)
 	NOT-FOR-US: WordPress plugin Newsletter Manager
 CVE-2012-6627 (Cross-site scripting (XSS) vulnerability in admin/test_mail.php in the ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin Newsletter Manager
 CVE-2012-6626 (SQL injection vulnerability in verify-user.php in b2ePMS 1.0 allows ...)
 	NOT-FOR-US: b2ePMS
 CVE-2012-6625 (SQL injection vulnerability in fs-admin/fs-admin.php in the ForumPress ...)
@@ -8661,7 +8661,7 @@
 CVE-2012-6624 (Cross-site scripting (XSS) vulnerability in the SoundCloud Is Gold ...)
 	NOT-FOR-US: WordPress plugin SoundCloud Is Gold
 CVE-2012-6623 (Cross-site scripting (XSS) vulnerability in fs-admin/wpf-add-forum.php ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin ForumPress WP Forum Server
 CVE-2012-6622 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	NOT-FOR-US: WordPress plugin ForumPress WP Forum Server
 CVE-2012-6606 (Palo Alto Networks GlobalProtect before 1.1.7, and NetConnect, does ...)
@@ -22280,7 +22280,7 @@
 CVE-2012-6494
 	RESERVED
 CVE-2012-6493 (Cross-site request forgery (CSRF) vulnerability in Rapid7 Nexpose ...)
-	TODO: check
+	NOT-FOR-US: Rapid7 Nexpose Security Console
 CVE-2012-6492
 	RESERVED
 CVE-2012-6491

More information about the Secure-testing-commits mailing list