[Secure-testing-commits] r27032 - data/CVE

Federico Ceratto federico-guest at moszumanska.debian.org
Sun May 25 13:40:32 UTC 2014 

Author: federico-guest
Date: 2014-05-25 13:40:32 +0000 (Sun, 25 May 2014)
New Revision: 27032

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-25 13:24:38 UTC (rev 27031)
+++ data/CVE/list	2014-05-25 13:40:32 UTC (rev 27032)
@@ -917,7 +917,7 @@
 CVE-2014-3412 (Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when ...)
 	NOT-FOR-US: Juniper Junos Space
 CVE-2014-3411 (Unspecified vulnerability in the NSM XDB service in NSM before ...)
-	TODO: check
+	NOT-FOR-US: Juniper NSM
 CVE-2014-3410
 	RESERVED
 CVE-2014-3409
@@ -2879,7 +2879,7 @@
 CVE-2014-2605
 	RESERVED
 CVE-2014-2604 (Unspecified vulnerability in HP IceWall SSO 10.0 Dfw and IceWall MCRP ...)
-	TODO: check
+	NOT-FOR-US: HP IceWall
 CVE-2014-2603 (Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and ...)
 	NOT-FOR-US: HP
 CVE-2014-2602 (Unspecified vulnerability in HP OneView 1.0 and 1.01 allows remote ...)
@@ -3544,7 +3544,7 @@
 CVE-2014-2352
 	RESERVED
 CVE-2014-2351 (SQL injection vulnerability in the LiveData service in CSWorks before ...)
-	TODO: check
+	NOT-FOR-US: CSWorks
 CVE-2014-2350
 	RESERVED
 CVE-2014-2349
@@ -4219,7 +4219,7 @@
 CVE-2014-2085
 	REJECTED
 CVE-2014-2084 (Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, ...)
-	TODO: check
+	NOT-FOR-US: Skybox View Appliances
 CVE-2014-2083
 	RESERVED
 CVE-2014-2082
@@ -4865,7 +4865,7 @@
 CVE-2014-1856
 	RESERVED
 CVE-2014-1855 (Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel ...)
-	TODO: check
+	NOT-FOR-US: Seo Panel
 CVE-2014-1854 (SQL injection vulnerability in library/clicktracker.php in the ...)
 	NOT-FOR-US: AdRotate plugin for WordPress
 CVE-2014-1853
@@ -5488,7 +5488,7 @@
 CVE-2014-1650
 	RESERVED
 CVE-2014-1649 (The server in Symantec Workspace Streaming (SWS) before 7.5.0.749 ...)
-	TODO: check
+	NOT-FOR-US: Symantec Workspace Streaming
 CVE-2014-1648 (Cross-site scripting (XSS) vulnerability in ...)
 	NOT-FOR-US: Symantec Messaging Gateway
 CVE-2014-1647 (Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop ...)
@@ -6360,7 +6360,7 @@
 CVE-2014-1348
 	RESERVED
 CVE-2014-1347 (Apple iTunes before 11.2.1 on OS X sets world-writable permissions for ...)
-	TODO: check
+	NOT-FOR-US: Apple iTunes
 CVE-2014-1346
 	RESERVED
 	- chromium-browser <undetermined>
@@ -6948,9 +6948,9 @@
 CVE-2014-0919
 	RESERVED
 CVE-2014-0918 (Directory traversal vulnerability in IBM Eclipse Help System (IEHS) in ...)
-	TODO: check
+	NOT-FOR-US: IBM Eclipse Help System
 CVE-2014-0917 (Cross-site scripting (XSS) vulnerability in IBM Eclipse Help System ...)
-	TODO: check
+	NOT-FOR-US: IBM Eclipse Help System
 CVE-2014-0916
 	RESERVED
 CVE-2014-0915
@@ -7290,7 +7290,7 @@
 CVE-2014-0783 (Stack-based buffer overflow in BKHOdeq.exe in Yokogawa CENTUM CS 3000 ...)
 	NOT-FOR-US: Yokogawa CENTUM CS 3000
 CVE-2014-0782 (Stack-based buffer overflow in BKESimmgr.exe in the Expanded Test ...)
-	TODO: check
+	NOT-FOR-US: Yokogawa CENTUM
 CVE-2014-0781 (Heap-based buffer overflow in BKCLogSvr.exe in Yokogawa CENTUM CS 3000 ...)
 	NOT-FOR-US: Yokogawa CENTUM CS 3000
 CVE-2014-0780 (Directory traversal vulnerability in NTWebServer in InduSoft Web ...)
@@ -7570,7 +7570,7 @@
 CVE-2014-0644 (EMC Cloud Tiering Appliance (CTA) 10 through SP1 allows remote ...)
 	NOT-FOR-US: EMC
 CVE-2014-0643 (EMC RSA NetWitness before 9.8.5.19 and RSA Security Analytics before ...)
-	TODO: check
+	NOT-FOR-US: EMC RSA NetWitness and RSA Security Analytics
 CVE-2014-0642 (EMC Documentum Content Server before 6.7 SP1 P26, 6.7 SP2 before P13, ...)
 	NOT-FOR-US: EMC Documentum Content Server
 CVE-2014-0641
@@ -9159,7 +9159,7 @@
 CVE-2013-6976 (Cross-site request forgery (CSRF) vulnerability in goform/Quick_setup ...)
 	NOT-FOR-US: Cisco
 CVE-2013-6975 (Directory traversal vulnerability in the command-line interface in ...)
-	TODO: check
+	NOT-FOR-US: Cisco NX-OS
 CVE-2013-6974 (Cross-site scripting (XSS) vulnerability in the web interface in Cisco ...)
 	NOT-FOR-US: Cisco Secure Access Control System
 CVE-2013-6973 (Cisco WebEx Training Center allows remote attackers to discover ...)
@@ -9435,7 +9435,7 @@
 CVE-2014-0252
 	RESERVED
 CVE-2014-0251 (Microsoft Windows SharePoint Services 3.0 SP3; SharePoint Server 2007 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft SharePoint
 CVE-2014-0250
 	RESERVED
 CVE-2014-0249
@@ -10514,11 +10514,11 @@
 	[wheezy] - horizon <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/openstack/horizon/commit/6179f70290783e55b10bbd4b3b7ee74db3f8ef70
 CVE-2013-6807 (The client in OpenText Exceed OnDemand (EoD) 8 supports anonymous ...)
-	TODO: check
+	NOT-FOR-US: OpenText Exceed OnDemand
 CVE-2013-6806 (OpenText Exceed OnDemand (EoD) 8 allows man-in-the-middle attackers to ...)
 	NOT-FOR-US: OpenText Exceed onDemand
 CVE-2013-6805 (OpenText Exceed OnDemand (EoD) 8 uses weak encryption for passwords, ...)
-	TODO: check
+	NOT-FOR-US: OpenText Exceed OnDemand
 CVE-2013-6804 (Cross-site scripting (XSS) vulnerability in the Search module before ...)
 	NOT-FOR-US: Jamroom Search module
 CVE-2013-6803

More information about the Secure-testing-commits mailing list