[Secure-testing-commits] r27437 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Wed Jun 25 06:49:15 UTC 2014 

Author: fgeek-guest
Date: 2014-06-25 06:49:15 +0000 (Wed, 25 Jun 2014)
New Revision: 27437

Modified:
   data/CVE/list
Log:
NFUs, owncloud issues already fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-06-25 06:34:09 UTC (rev 27436)
+++ data/CVE/list	2014-06-25 06:49:15 UTC (rev 27437)
@@ -1412,7 +1412,7 @@
 	RESERVED
 	NOT-FOR-US: Pyplate
 CVE-2014-3850 (Cross-site request forgery (CSRF) vulnerability in the Member Approval ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin Member Approval 131109
 CVE-2014-3849 (The iMember360 plugin 3.8.012 through 3.9.001 for WordPress does not ...)
 	NOT-FOR-US: WordPress plugin iMember360
 CVE-2014-3848 (The iMember360 plugin before 3.9.001 for WordPress does not properly ...)
@@ -1493,9 +1493,9 @@
 	NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-011/
 	NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-013/
 CVE-2014-3833 (Multiple cross-site scripting (XSS) vulnerabilities in the (1) Gallery ...)
-	TODO: check
+	- owncloud 6.0.3+dfsg-2
 CVE-2014-3832 (Cross-site scripting (XSS) vulnerability in the Documents component in ...)
-	TODO: check
+	- owncloud 6.0.3+dfsg-2
 CVE-2014-3831
 	REJECTED
 CVE-2014-3830
@@ -1549,9 +1549,9 @@
 CVE-2014-3806 (Directory traversal vulnerability in cgi-bin/help/doIt.cgi in VMTurbo ...)
 	NOT-FOR-US: VMTurbo Operations Manager
 CVE-2014-3805 (The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows ...)
-	TODO: check
+	NOT-FOR-US: AlienVault OSSIM
 CVE-2014-3804 (The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows ...)
-	TODO: check
+	NOT-FOR-US: AlienVault OSSIM
 CVE-2014-3803 (The SpeechInput feature in Blink, as used in Google Chrome before ...)
 	{DSA-2939-1}
 	- chromium-browser 35.0.1916.114-1
@@ -1598,7 +1598,7 @@
 	- heat 2014.1-4 (bug #748824)
 	NOTE: https://launchpad.net/bugs/1311223
 CVE-2014-3786 (Multiple cross-site scripting (XSS) vulnerabilities in the contact ...)
-	TODO: check
+	NOT-FOR-US: Pixie CMS
 CVE-2014-3785
 	RESERVED
 CVE-2014-3784
@@ -1614,7 +1614,7 @@
 CVE-2014-3779
 	RESERVED
 CVE-2014-3778 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: ARRIS modem
 CVE-2014-3777
 	RESERVED
 CVE-2014-3770

More information about the Secure-testing-commits mailing list