[Secure-testing-commits] r27677 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Jul 9 19:59:36 UTC 2014 

Author: carnil
Date: 2014-07-09 19:59:36 +0000 (Wed, 09 Jul 2014)
New Revision: 27677

Modified:
   data/CVE/list
Log:
Process NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-07-09 19:59:29 UTC (rev 27676)
+++ data/CVE/list	2014-07-09 19:59:36 UTC (rev 27677)
@@ -1174,7 +1174,7 @@
 CVE-2014-4196
 	RESERVED
 CVE-2014-4195 (Cross-site scripting (XSS) vulnerability in zero_view_article.php in ...)
-	TODO: check
+	NOT-FOR-US: ZeroCMS
 CVE-2014-4194
 	RESERVED
 CVE-2014-XXXX [softhsm-keyconv creates security-sensibe file world-readable]
@@ -3269,7 +3269,7 @@
 CVE-2014-3308 (Cisco IOS XR on Trident line cards in ASR 9000 devices lacks a static ...)
 	NOT-FOR-US: Cisco IOS XR
 CVE-2014-3307 (The DHCP client implementation in Universal Small Cell firmware on ...)
-	TODO: check
+	NOT-FOR-US: Cisco Small Cell
 CVE-2014-3306
 	RESERVED
 CVE-2014-3305
@@ -3287,9 +3287,9 @@
 CVE-2014-3299 (Cisco IOS allows remote authenticated users to cause a denial of ...)
 	NOT-FOR-US: Cisco IOS
 CVE-2014-3298 (Form Data Viewer in Cisco Intelligent Automation for Cloud in Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2014-3297 (Cisco Intelligent Automation for Cloud in Cisco Cloud Portal does not ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2014-3296 (The XML programmatic interface (XML PI) in Cisco WebEx Meeting Server ...)
 	NOT-FOR-US: Cisco WebEx
 CVE-2014-3295 (The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows ...)
@@ -3687,7 +3687,7 @@
 CVE-2014-3150
 	RESERVED
 CVE-2014-3149 (Cross-site scripting (XSS) vulnerability in Invision Power IP.Board ...)
-	TODO: check
+	NOT-FOR-US: Invision Power IP.Board
 CVE-2014-3148
 	RESERVED
 CVE-2014-3147
@@ -3782,7 +3782,7 @@
 	RESERVED
 	NOT-FOR-US: WordPress plugin ezpz-one-click-backup
 CVE-2014-3113 (Multiple buffer overflows in RealNetworks RealPlayer before 17.0.10.8 ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2014-3112
 	RESERVED
 CVE-2014-3110
@@ -3874,7 +3874,7 @@
 CVE-2014-3067
 	RESERVED
 CVE-2014-3066 (IBM Tivoli Endpoint Manager 9.1 before 9.1.1088.0 allows remote ...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli Endpoint Manager
 CVE-2014-3065
 	RESERVED
 CVE-2014-3064
@@ -4109,15 +4109,15 @@
 CVE-2014-2970
 	RESERVED
 CVE-2014-2969 (NETGEAR GS108PE Prosafe Plus switches with firmware 1.2.0.5 have a ...)
-	TODO: check
+	NOT-FOR-US: NETGEAR GS108PE Prosafe Plus switches
 CVE-2014-2968
 	RESERVED
 CVE-2014-2967 (Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Autodesk VRED Professional
 CVE-2014-2966
 	RESERVED
 CVE-2014-2965 (Cross-site scripting (XSS) vulnerability in auth-settings-x.php in ...)
-	TODO: check
+	NOT-FOR-US: SpamTitan
 CVE-2014-2964
 	RESERVED
 CVE-2014-2963
@@ -9324,7 +9324,7 @@
 CVE-2014-0876
 	RESERVED
 CVE-2014-0875 (Active Cloud Engine (ACE) in IBM Storwize V7000 Unified 1.3.0.0 ...)
-	TODO: check
+	NOT-FOR-US: IBM Storwize V7000 Unified
 CVE-2014-0874 (Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.x ...)
 	NOT-FOR-US: IBM Content Navigator
 CVE-2014-0873 (Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) ...)
@@ -9354,7 +9354,7 @@
 CVE-2014-0861 (Cross-site scripting (XSS) vulnerability in the server in IBM Cognos ...)
 	NOT-FOR-US: IBM Cognos Business Intelligence
 CVE-2014-0860 (The firmware before 3.66E in IBM BladeCenter Advanced Management ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2014-0859 (The web-server plugin in IBM WebSphere Application Server (WAS) 7.x ...)
 	NOT-FOR-US: IBM WebSphere Application Server
 CVE-2014-0858 (IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote ...)
@@ -9991,7 +9991,7 @@
 CVE-2014-0603
 	RESERVED
 CVE-2014-0602 (Directory traversal vulnerability in the DumpToFile method in the ...)
-	TODO: check
+	NOT-FOR-US: NetIQ Security Manager
 CVE-2014-0601
 	RESERVED
 CVE-2014-0600
@@ -11594,7 +11594,7 @@
 	{DSA-2963-1}
 	- lucene-solr 3.6.2+dfsg-2 (bug #731113)
 CVE-2014-0325 (Use-after-free vulnerability in Microsoft Internet Explorer 9 allows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-0324 (Microsoft Internet Explorer 8 through 11 allows remote attackers to ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-0323 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
@@ -16567,7 +16567,7 @@
 CVE-2013-5424 (IBM Flex System Manager (FSM) 1.3.0 allows remote attackers to bypass ...)
 	NOT-FOR-US: IBM Flex System Manager
 CVE-2013-5423 (IBM Flex System Manager (FSM) 1.1 through 1.3 before 1.3.2.0 allows ...)
-	TODO: check
+	NOT-FOR-US: IBM Flex System Manager
 CVE-2013-5422 (The Web Client in IBM Rational ClearQuest 7.1 through 7.1.2.12, ...)
 	NOT-FOR-US: IBM Rational ClearQuest
 CVE-2013-5421 (Cross-site scripting (XSS) vulnerability in the IMS server before Ifix ...)
@@ -20458,7 +20458,7 @@
 CVE-2013-3994
 	RESERVED
 CVE-2013-3993 (IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated ...)
-	TODO: check
+	NOT-FOR-US: IBM InfoSphere BigInsights
 CVE-2013-3992 (Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere ...)
 	NOT-FOR-US: IBM
 CVE-2013-3991

More information about the Secure-testing-commits mailing list