[Secure-testing-commits] r27037 - data/CVE

Helmut Grohne helmutg at moszumanska.debian.org
Mon May 26 18:16:25 UTC 2014 

Author: helmutg
Date: 2014-05-26 18:16:24 +0000 (Mon, 26 May 2014)
New Revision: 27037

Modified:
   data/CVE/list
Log:
NFUs, 1 itp

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-26 05:30:49 UTC (rev 27036)
+++ data/CVE/list	2014-05-26 18:16:24 UTC (rev 27037)
@@ -103,9 +103,9 @@
 CVE-2014-3787 (SAP NetWeaver 7.20 and earlier allows remote attackers to read ...)
 	NOT-FOR-US: SAP NetWeaver
 CVE-2013-7385 (LiveZilla 5.1.2.1 and earlier includes the MD5 hash of the operator ...)
-	TODO: check
+	NOT-FOR-US: LiveZilla
 CVE-2013-7384 (UnrealIRCd 3.2.10 before 3.2.10.2 allows remote attackers to cause a ...)
-	TODO: check
+	- unrealircd <itp> (bug #515130)
 CVE-2014-3840 [Persistent XSS]
 	RESERVED
 	- mayan <itp> (bug #718580)
@@ -187,7 +187,7 @@
 CVE-2014-3743
 	RESERVED
 CVE-2014-3742 (The hapi server framework 2.0.x and 2.1.x before 2.2.0 for Node.js ...)
-	TODO: check
+	NOT-FOR-US: hapi framework for Node.js
 CVE-2014-3741
 	RESERVED
 CVE-2014-3740
@@ -731,13 +731,13 @@
 CVE-2014-3463
 	RESERVED
 CVE-2013-7382 (VICIDIAL dialer (aka Asterisk GUI client) 2.8-403a, 2.7, 2.7RC1, and ...)
-	TODO: check
+	NOT-FOR-US: VICIDIAL
 CVE-2013-7381
 	RESERVED
 CVE-2013-7380
 	RESERVED
 CVE-2013-7379 (The admin API in the tomato module before 0.0.6 for Node.js does not ...)
-	TODO: check
+	NOT-FOR-US: tomato module for Node.js
 CVE-2013-7378
 	RESERVED
 CVE-2013-7377
@@ -830,7 +830,7 @@
 CVE-2014-3454 (Cross-site request forgery (CSRF) vulnerability in ...)
 	NOT-FOR-US: MediaWiki extension SemanticForms
 CVE-2014-3452 (Filters\LAV\avfilter-lav-4.dll in K-lite Codec 10.4.5 and earlier ...)
-	TODO: check
+	NOT-FOR-US: K-lite Codec
 CVE-2014-3451
 	RESERVED
 CVE-2014-3450
@@ -5583,7 +5583,7 @@
 CVE-2014-1614
 	RESERVED
 CVE-2014-1613 (Dotclear before 2.6.2 allows remote attackers to execute arbitrary PHP ...)
-	TODO: check
+	NOT-FOR-US: DotClear
 CVE-2014-1612 (Cross-site scripting (XSS) vulnerability in login.esp in the Web ...)
 	NOT-FOR-US: Mediatrix
 CVE-2014-1610 (MediaWiki 1.22.x before 1.22.2, 1.21.x before 1.21.5 and 1.19.x before ...)

More information about the Secure-testing-commits mailing list