[Secure-testing-commits] r27525 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Sun Jun 29 08:11:11 UTC 2014 

Author: fgeek-guest
Date: 2014-06-29 08:11:10 +0000 (Sun, 29 Jun 2014)
New Revision: 27525

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-06-29 08:04:45 UTC (rev 27524)
+++ data/CVE/list	2014-06-29 08:11:10 UTC (rev 27525)
@@ -327,9 +327,9 @@
 CVE-2014-4507 (Directory traversal vulnerability in Smart-Proxy in Foreman before ...)
 	TODO: check
 CVE-2014-4506 (Cross-site scripting (XSS) vulnerability in the Custom Meta module ...)
-	TODO: check
+	NOT-FOR-US: Drupal module Custom Meta
 CVE-2014-4505 (Cross-site scripting (XSS) vulnerability in the Easy Breadcrumb module ...)
-	TODO: check
+	NOT-FOR-US: Drupal module Easy Breadcrumb
 CVE-2014-XXXX [mediawiki: unspecified security vulnerability]
 	- mediawiki 1:1.19.17+dfsg-1 (bug #752622)
 	NOTE: most likely hardening, watch oss-security if it get's a CVE assigned
@@ -1683,7 +1683,7 @@
 CVE-2014-3883 (Usermin before 1.600 allows remote attackers to execute arbitrary ...)
 	NOT-FOR-US: Usermin
 CVE-2014-3882 (Cross-site request forgery (CSRF) vulnerability in the Login rebuilder ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin login-rebuilder
 CVE-2014-3881
 	RESERVED
 CVE-2014-3880 (The (1) execve and (2) fexecve system calls in the FreeBSD kernel 8.4 ...)
@@ -3643,9 +3643,9 @@
 CVE-2014-3054
 	RESERVED
 CVE-2014-3053 (The Local Management Interface (LMI) in IBM Security Access Manager ...)
-	TODO: check
+	NOT-FOR-US: IBM ISAM
 CVE-2014-3052 (The reverse-proxy feature in IBM Security Access Manager (ISAM) for ...)
-	TODO: check
+	NOT-FOR-US: IBM ISAM
 CVE-2014-3051
 	RESERVED
 CVE-2014-3050
@@ -6361,7 +6361,7 @@
 CVE-2014-2006
 	RESERVED
 CVE-2014-2005 (Sophos Disk Encryption (SDE) 5.x in Sophos Enterprise Console (SEC) ...)
-	TODO: check
+	NOT-FOR-US: Sophos Enterprise Console
 CVE-2014-2004 (The PPP Access Concentrator (PPPAC) on SEIL SEIL/x86 routers 1.00 ...)
 	NOT-FOR-US: SEIL routers
 CVE-2014-2003 (JustSystems JUST Online Update, as used in Ichitaro through 2014 and ...)

More information about the Secure-testing-commits mailing list