[Secure-testing-commits] r25001 - data/CVE
Federico Ceratto
federico-guest at moszumanska.debian.org
Wed Jan 1 20:47:13 UTC 2014
Author: federico-guest
Date: 2014-01-01 20:47:13 +0000 (Wed, 01 Jan 2014)
New Revision: 25001
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-01 17:41:29 UTC (rev 25000)
+++ data/CVE/list 2014-01-01 20:47:13 UTC (rev 25001)
@@ -43,9 +43,9 @@
CVE-2013-7233 (Cross-site request forgery (CSRF) vulnerability in the retrospam ...)
TODO: check
CVE-2013-7232 (SQL injection vulnerability in ESRI ArcGIS for Server through 10.2 ...)
- TODO: check
+ NOT-FOR-US: ESRI ArcGIS
CVE-2013-7231 (Cross-site scripting (XSS) vulnerability in the Mobile Content Server ...)
- TODO: check
+ NOT-FOR-US: ESRI ArcGIS
CVE-2013-7230
RESERVED
CVE-2013-7229
@@ -1394,13 +1394,13 @@
CVE-2013-6933
RESERVED
CVE-2013-6932 (Buffer overflow in IrfanView before 4.37, when a multibyte-character ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2013-6931
RESERVED
CVE-2013-6930
RESERVED
CVE-2013-6929 (SQL injection vulnerability in Cybozu Garoon 3.7 SP2 and earlier ...)
- TODO: check
+ NOT-FOR-US: Cybozu Garoon
CVE-2013-6928
RESERVED
CVE-2013-6927
@@ -3865,7 +3865,7 @@
CVE-2013-6190
RESERVED
CVE-2013-6189 (Unspecified vulnerability in the Archive Query Server in HP ...)
- TODO: check
+ NOT-FOR-US: HP Application Information Optimizer
CVE-2013-6188
RESERVED
CVE-2013-6187
@@ -4267,7 +4267,7 @@
CVE-2013-6007
RESERVED
CVE-2013-6006 (Cybozu Garoon 3.5 through 3.7 SP2 allows remote attackers to bypass ...)
- TODO: check
+ NOT-FOR-US: Cybozu Garoon
CVE-2013-6005 (Cross-site scripting (XSS) vulnerability in Cybozu Dezie before 8.1.0 ...)
NOT-FOR-US: Cybozu Dezie
CVE-2013-6004 (Session fixation vulnerability in Cybozu Garoon before 3.7.2 allows ...)
@@ -5763,7 +5763,7 @@
CVE-2013-5421 (Cross-site scripting (XSS) vulnerability in the IMS server before Ifix ...)
NOT-FOR-US: IBM
CVE-2013-5420 (The IMS server before Ifix 6 in IBM Security Access Manager for ...)
- TODO: check
+ NOT-FOR-US: IBM Security Access Manager
CVE-2013-5419 (Multiple buffer overflows in (1) mkque and (2) mkquedev in ...)
NOT-FOR-US: IBM AIX
CVE-2013-5418 (Cross-site scripting (XSS) vulnerability in the Administrative console ...)
@@ -6161,7 +6161,7 @@
CVE-2013-5223 (Multiple cross-site scripting (XSS) vulnerabilities in D-Link ...)
NOT-FOR-US: D-Link DSL-2760U Gateway
CVE-2013-5222 (Multiple cross-site scripting (XSS) vulnerabilities in ESRI ArcGIS for ...)
- TODO: check
+ NOT-FOR-US: ESRI ArcGIS
CVE-2013-5221 (The mobile-upload feature in Esri ArcGIS for Server 10.1 through 10.2 ...)
NOT-FOR-US: Esri ArcGIS
CVE-2013-5220 (goform/login on the HOT HOTBOX router with software 2.1.11 allows ...)
@@ -6965,7 +6965,7 @@
CVE-2013-4859
RESERVED
CVE-2013-4858 (Microsoft Windows Movie Maker 2.1.4026.0 on Windows XP SP3 allows ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows Movie Maker
CVE-2013-4857
RESERVED
CVE-2013-4856
@@ -9801,7 +9801,7 @@
CVE-2013-3847 (Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word ...)
NOT-FOR-US: Microsoft
CVE-2013-3846 (Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2013-3845 (Microsoft Internet Explorer 8 and 9 allows remote attackers to execute ...)
NOT-FOR-US: Microsoft
CVE-2013-3844
@@ -13024,7 +13024,7 @@
CVE-2013-2505
RESERVED
CVE-2013-2504 (Cross-site scripting (XSS) vulnerability in SPS/Portal/default.aspx in ...)
- TODO: check
+ NOT-FOR-US: Matrix42 Service Store
CVE-2013-2503 (Privoxy before 3.0.21 does not properly handle Proxy-Authenticate and ...)
- privoxy 3.0.21-1 (low; bug #702896)
[wheezy] - privoxy <no-dsa> (Minor issue)
@@ -17411,7 +17411,7 @@
CVE-2013-1097 (Cross-site scripting (XSS) vulnerability in a ZCC page in njwc.jar in ...)
NOT-FOR-US: Novell ZENworks Configuration Management
CVE-2013-1096 (Cross-site scripting (XSS) vulnerability in the Roles Based ...)
- TODO: check
+ NOT-FOR-US: Novell Identity Manager
CVE-2013-1095 (Cross-site scripting (XSS) vulnerability in a ZCC page in njwc.jar in ...)
NOT-FOR-US: Novell ZENworks Configuration Management
CVE-2013-1094 (Cross-site scripting (XSS) vulnerability in a ZCC page in ...)
@@ -60021,7 +60021,7 @@
CVE-2010-1820 (Apple Filing Protocol (AFP) Server in Apple Mac OS X 10.6.x through ...)
NOT-FOR-US: Apple Filing Protocol Server
CVE-2010-1819 (Untrusted search path vulnerability in the Picture Viewer in Apple ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2010-1818 (The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple ...)
NOT-FOR-US: QuickTime
CVE-2010-1817 (Buffer overflow in ImageIO in Apple iOS before 4.1 on the iPhone and ...)
More information about the Secure-testing-commits
mailing list