[Secure-testing-commits] r25406 - data/CVE

Federico Ceratto federico-guest at moszumanska.debian.org
Wed Jan 29 09:35:14 UTC 2014 

Author: federico-guest
Date: 2014-01-29 09:35:14 +0000 (Wed, 29 Jan 2014)
New Revision: 25406

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-01-29 09:23:42 UTC (rev 25405)
+++ data/CVE/list	2014-01-29 09:35:14 UTC (rev 25406)
@@ -62,7 +62,7 @@
 CVE-2014-1671 (Multiple SQL injection vulnerabilities in Dell KACE K1000 5.4.76847 ...)
 	NOT-FOR-US: Dell KACE K1000
 CVE-2014-1670 (The Microsoft Bing application before 4.2.1 for Android allows remote ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Bing application
 CVE-2014-1669
 	RESERVED
 CVE-2014-1668
@@ -555,7 +555,7 @@
 CVE-2014-1467
 	RESERVED
 CVE-2014-1466 (SQL injection vulnerability in CSP MySQL User Manager 2.3 allows ...)
-	TODO: check
+	NOT-FOR-US: CSP MySQL User Manager
 CVE-2014-1465
 	RESERVED
 CVE-2014-1464
@@ -1019,7 +1019,7 @@
 CVE-2014-1253
 	RESERVED
 CVE-2014-1252 (Double free vulnerability in Apple Pages 2.x before 2.1 and 5.x before ...)
-	TODO: check
+	NOT-FOR-US: Apple Pages
 CVE-2014-1251
 	RESERVED
 CVE-2014-1250
@@ -1039,7 +1039,7 @@
 CVE-2014-1243
 	RESERVED
 CVE-2014-1242 (Apple iTunes before 11.1.4 uses HTTP for the iTunes Tutorials window, ...)
-	TODO: check
+	NOT-FOR-US: Apple iTunes
 CVE-2014-1241
 	RESERVED
 CVE-2014-1240
@@ -1110,7 +1110,7 @@
 CVE-2014-1204
 	RESERVED
 CVE-2014-1202 (The WSDL/WADL import functionality in SoapUI before 4.6.4 allows ...)
-	TODO: check
+	NOT-FOR-US: SoapUI
 CVE-2014-1201 (Buffer overflow in the INetViewX ActiveX control in the Lorex Edge ...)
 	NOT-FOR-US: Lorex
 CVE-2014-0999
@@ -1584,13 +1584,13 @@
 CVE-2014-0810
 	RESERVED
 CVE-2014-0809 (Directory traversal vulnerability in the Gapless Player SimZip (aka ...)
-	TODO: check
+	NOT-FOR-US: Gapless Player SimZip
 CVE-2014-0808 (The lfCheckError function in ...)
 	NOT-FOR-US: LOCKON EC-CUBE
 CVE-2014-0807 (data/class/pages/shopping/LC_Page_Shopping_Deliv.php in LOCKON EC-CUBE ...)
 	NOT-FOR-US: LOCKON EC-CUBE
 CVE-2014-0806 (The Sleipnir Mobile application 2.12.1 and earlier and Sleipnir Mobile ...)
-	TODO: check
+	NOT-FOR-US: Sleipnir Mobile application
 CVE-2014-0805 (Directory traversal vulnerability in the NeoFiler application 5.4.3 ...)
 	NOT-FOR-US: NeoFiler
 CVE-2014-0804 (Directory traversal vulnerability in the CGENE Security File Manager ...)
@@ -1619,7 +1619,7 @@
 	RESERVED
 	NOT-FOR-US: Komento Joomla Extension
 CVE-2014-0792 (Sonatype Nexus 1.x and 2.x before 2.7.1 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Sonatype Nexus
 CVE-2014-0790
 	RESERVED
 CVE-2013-7288 (Cross-site scripting (XSS) vulnerability in the mycode_parse_video ...)
@@ -1761,13 +1761,13 @@
 CVE-2014-0754
 	RESERVED
 CVE-2014-0753 (Stack-based buffer overflow in the SCADA server in Ecava IntegraXor ...)
-	TODO: check
+	NOT-FOR-US: Ecava IntegraXor
 CVE-2014-0752 (The SCADA server in Ecava IntegraXor before 4.1.4369 allows remote ...)
 	NOT-FOR-US: Ecava IntegraXor
 CVE-2014-0751 (Directory traversal vulnerability in CimWebServer.exe (aka the WebView ...)
-	TODO: check
+	NOT-FOR-US: GE Intelligent Platforms Proficy
 CVE-2014-0750 (Directory traversal vulnerability in gefebt.exe in the WebView CimWeb ...)
-	TODO: check
+	NOT-FOR-US: GE Intelligent Platforms Proficy
 CVE-2014-0749
 	RESERVED
 CVE-2014-0748
@@ -1911,7 +1911,7 @@
 CVE-2014-0679
 	RESERVED
 CVE-2014-0678 (The portal interface in Cisco Secure Access Control System (ACS) does ...)
-	TODO: check
+	NOT-FOR-US: Cisco Secure Access Control System
 CVE-2014-0677 (The Label Distribution Protocol (LDP) functionality in Cisco NX-OS ...)
 	NOT-FOR-US: Cisco NX-OS
 CVE-2014-0676 (Cisco NX-OS allows local users to bypass intended TACACS+ command ...)
@@ -1919,9 +1919,9 @@
 CVE-2014-0675 (The Expressway component in Cisco TelePresence Video Communication ...)
 	NOT-FOR-US: Cisco
 CVE-2014-0674 (Cisco Video Surveillance Operations Manager (VSOM) does not require ...)
-	TODO: check
+	NOT-FOR-US: Cisco Video Surveillance Operations Manager
 CVE-2014-0673 (Multiple cross-site scripting (XSS) vulnerabilities in the web ...)
-	TODO: check
+	NOT-FOR-US: Cisco Video Surveillance
 CVE-2014-0672 (The Search and Play interface in Cisco MediaSense does not properly ...)
 	NOT-FOR-US: Cisco MediaSense
 CVE-2014-0671 (Open redirect vulnerability in Cisco MediaSense allows remote ...)
@@ -2429,7 +2429,7 @@
 CVE-2014-0495 (Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 on ...)
 	NOT-FOR-US: Adobe Reader
 CVE-2014-0494 (Adobe Digital Editions 2.0.1 allows attackers to execute arbitrary ...)
-	TODO: check
+	NOT-FOR-US: Adobe Digital Editions
 CVE-2014-0493 (Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 on ...)
 	NOT-FOR-US: Adobe Reader
 CVE-2014-0492 (Adobe Flash Player before 11.7.700.260 and 11.8.x and 11.9.x before ...)

More information about the Secure-testing-commits mailing list