[Secure-testing-commits] r27036 - data/CVE

Helmut Grohne helmutg at moszumanska.debian.org
Mon May 26 05:30:49 UTC 2014 

Author: helmutg
Date: 2014-05-26 05:30:49 +0000 (Mon, 26 May 2014)
New Revision: 27036

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-26 05:21:24 UTC (rev 27035)
+++ data/CVE/list	2014-05-26 05:30:49 UTC (rev 27036)
@@ -159,11 +159,11 @@
 CVE-2014-3760 (Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link ...)
 	NOT-FOR-US: D-Link DAP 1150
 CVE-2014-3759 (Multiple SQL injection vulnerabilities in the BibTex Publications ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension si_bibtex
 CVE-2014-3758 (Cross-site scripting (XSS) vulnerability in the BibTex Publications ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension si_bibtex
 CVE-2014-3757 (SQL injection vulnerability in sorter.php in the phpManufaktur kitForm ...)
-	TODO: check
+	NOT-FOR-US: phpManufaktur extension
 CVE-2014-3754
 	RESERVED
 CVE-2014-3753
@@ -743,7 +743,7 @@
 CVE-2013-7377
 	RESERVED
 CVE-2013-7376 (Multiple cross-site request forgery (CSRF) vulnerabilities in OpenX ...)
-	TODO: check
+	NOT-FOR-US: OpenX
 CVE-2014-3800 [file containing a password world readable]
 	RESERVED
 	- xbmc <unfixed> (low; bug #747428)
@@ -5603,7 +5603,7 @@
 CVE-2014-1605
 	RESERVED
 CVE-2014-1603 (Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS ...)
-	TODO: check
+	NOT-FOR-US: GetSimple CMS
 CVE-2014-1602
 	RESERVED
 CVE-2014-1601
@@ -12727,7 +12727,7 @@
 CVE-2013-5940
 	RESERVED
 CVE-2013-5939 (Multiple cross-site scripting (XSS) vulnerabilities in the Guestbook ...)
-	TODO: check
+	NOT-FOR-US: PHPCMS
 CVE-2013-5938 (Cross-site scripting (XSS) vulnerability in the Click2Sell Suite ...)
 	NOT-FOR-US: Click2Sell Suite Drupal contributed module
 CVE-2013-5937 (Cross-site request forgery (CSRF) vulnerability in the Click2Sell ...)
@@ -21029,7 +21029,7 @@
 CVE-2013-2701 (Cross-site request forgery (CSRF) vulnerability in the Social Sharing ...)
 	NOT-FOR-US: social sharing toolkit plugin for wp
 CVE-2013-2700 (Cross-site request forgery (CSRF) vulnerability in the Add/Edit page ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin WP125
 CVE-2013-2699 (Cross-site request forgery (CSRF) vulnerability in the ...)
 	NOT-FOR-US: WordPress plugin underConstruction
 CVE-2013-2698
@@ -23887,7 +23887,7 @@
 	{DSA-2650-1}
 	- libvirt 0.9.12-8 (bug #701649)
 CVE-2013-1765 (Multiple cross-site scripting (XSS) vulnerabilities in jwplayer.swf in ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin smart-flv
 CVE-2013-1764 (The Zypper (aka zypp) backend in PackageKit before 0.8.8 allows local ...)
 	- packagekit <not-affected> (Zypp backend specific to SuSE)
 CVE-2013-1763 (Array index error in the __sock_diag_rcv_msg function in ...)
@@ -29665,7 +29665,7 @@
 CVE-2011-5250
 	RESERVED
 CVE-2011-5249 (Cross-site scripting (XSS) vulnerability in the events page in the ...)
-	TODO: check
+	NOT-FOR-US: SNARE
 CVE-2011-5248
 	RESERVED
 CVE-2011-5247

More information about the Secure-testing-commits mailing list