[Secure-testing-commits] r27404 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Mon Jun 23 10:41:39 UTC 2014 

Author: fgeek-guest
Date: 2014-06-23 10:41:39 +0000 (Mon, 23 Jun 2014)
New Revision: 27404

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-06-23 09:39:05 UTC (rev 27403)
+++ data/CVE/list	2014-06-23 10:41:39 UTC (rev 27404)
@@ -2885,7 +2885,7 @@
 CVE-2014-3217
 	RESERVED
 CVE-2014-3216 (GOM Media Player 2.2.57.5189 and earlier allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Gretech GOM Media Player
 CVE-2014-3215 (seunshare in policycoreutils 2.2.5 is owned by root with 4755 ...)
 	- policycoreutils <not-affected> (seunshare not enabled/built in Debian)
 CVE-2014-3214 (The prefetch implementation in named in ISC BIND 9.10.0, when a ...)
@@ -3255,7 +3255,7 @@
 CVE-2014-3049
 	RESERVED
 CVE-2014-3048 (Unspecified vulnerability on the IBM System Storage Virtualization ...)
-	TODO: check
+	NOT-FOR-US: BM System Storage Virtualization Engine
 CVE-2014-3047
 	RESERVED
 CVE-2014-3046
@@ -3267,7 +3267,7 @@
 CVE-2014-3043
 	RESERVED
 CVE-2014-3042 (IBM CICS Transaction Server 3.1, 3.2, 4.1, 4.2, and 5.1 on z/OS does ...)
-	TODO: check
+	NOT-FOR-US: IBM CICS Transaction Serve
 CVE-2014-3041
 	RESERVED
 CVE-2014-3040
@@ -3275,11 +3275,11 @@
 CVE-2014-3039
 	RESERVED
 CVE-2014-3038 (IBM SPSS Modeler 16.0 before 16.0.0.1 on UNIX does not properly drop ...)
-	TODO: check
+	NOT-FOR-US: IBM SPSS Modeler
 CVE-2014-3037
 	RESERVED
 CVE-2014-3036 (Unspecified vulnerability in IBM API Management 3.0.0.0, when basic ...)
-	TODO: check
+	NOT-FOR-US: IBM API Management
 CVE-2014-3035
 	RESERVED
 CVE-2014-3034
@@ -3325,9 +3325,9 @@
 CVE-2014-3014 (Cross-site scripting (XSS) vulnerability in the Meeting Server in IBM ...)
 	NOT-FOR-US: IBM Sametime
 CVE-2014-3013 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Curam ...)
-	TODO: check
+	NOT-FOR-US: IBM Curam Social Program Management
 CVE-2014-3012 (Multiple CRLF injection vulnerabilities in IBM Curam Social Program ...)
-	TODO: check
+	NOT-FOR-US: IBM Curam Social Program Management
 CVE-2014-3011
 	RESERVED
 CVE-2014-3010 (Cross-site scripting (XSS) vulnerability in the Web UI in IBM ...)
@@ -3470,7 +3470,7 @@
 CVE-2014-2963
 	RESERVED
 CVE-2014-2962 (Absolute path traversal vulnerability in the webproc cgi module on the ...)
-	TODO: check
+	NOT-FOR-US: Belkin router
 CVE-2014-2961
 	RESERVED
 CVE-2014-2960
@@ -3501,7 +3501,7 @@
 CVE-2014-2950
 	RESERVED
 CVE-2014-2949 (SQL injection vulnerability in the web service in F5 ARX Data Manager ...)
-	TODO: check
+	NOT-FOR-US: F5 ARX Data Manager
 CVE-2014-2948 (SQL injection vulnerability in workflowenginesoa.asmx in Bizagi BPM ...)
 	NOT-FOR-US: Bizagi BPM
 CVE-2014-2947 (Cross-site scripting (XSS) vulnerability in Login.aspx in Bizagi BPM ...)
@@ -3889,13 +3889,13 @@
 CVE-2014-2783
 	RESERVED
 CVE-2014-2782 (Microsoft Internet Explorer 9 through 11 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-2781
 	RESERVED
 CVE-2014-2780
 	RESERVED
 CVE-2014-2779 (mpengine.dll in Microsoft Malware Protection Engine before 1.1.10701.0 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Malware Protection Engine
 CVE-2014-2778 (Microsoft Word 2007 SP3 and Office Compatibility Pack SP3 allow remote ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2014-2777 (Microsoft Internet Explorer 8 through 11 allows remote attackers to ...)
@@ -4483,7 +4483,7 @@
 CVE-2014-2577 (Multiple cross-site scripting (XSS) vulnerabilities in the Transform ...)
 	NOT-FOR-US: Transform Foundation server
 CVE-2014-2575 (Directory traversal vulnerability in the File Manager component in ...)
-	TODO: check
+	NOT-FOR-US: ASP.NET WebForms and MVC
 CVE-2014-2574
 	RESERVED
 CVE-2014-2570
@@ -4614,7 +4614,7 @@
 CVE-2014-2503 (The thumbnail proxy server in EMC Documentum Digital Asset Manager ...)
 	NOT-FOR-US: EMC Documentum Digital Asset Manager
 CVE-2014-2502 (Cross-site scripting (XSS) vulnerability in rsa_fso.swf in EMC RSA ...)
-	TODO: check
+	NOT-FOR-US: EMC RSA Adaptive Authentication
 CVE-2014-2501
 	RESERVED
 CVE-2014-2500

More information about the Secure-testing-commits mailing list