[Secure-testing-commits] r29843 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Wed Nov 5 11:41:52 UTC 2014 

Author: fgeek-guest
Date: 2014-11-05 11:41:52 +0000 (Wed, 05 Nov 2014)
New Revision: 29843

Modified:
   data/CVE/list
Log:
NFU

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-05 09:35:20 UTC (rev 29842)
+++ data/CVE/list	2014-11-05 11:41:52 UTC (rev 29843)
@@ -4335,8 +4335,10 @@
 	NOT-FOR-US: Your Online Shop
 CVE-2014-6617
 	RESERVED
+	TODO: check
 CVE-2014-6616
 	RESERVED
+	TODO: check
 CVE-2014-6615
 	RESERVED
 CVE-2014-6614
@@ -5552,11 +5554,11 @@
 CVE-2014-6151 (CRLF injection vulnerability in IBM Tivoli Integrated Portal (TIP) ...)
 	NOT-FOR-US: IBM Tivoli
 CVE-2014-6150 (Cross-site scripting (XSS) vulnerability in IBM Tivoli Application ...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli TADDM
 CVE-2014-6149 (Directory traversal vulnerability in BIRT-viewer in IBM Tivoli ...)
 	NOT-FOR-US: IBM Tivoli TADDM
 CVE-2014-6148 (IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.0.0 ...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli TADDM
 CVE-2014-6147
 	RESERVED
 CVE-2014-6146
@@ -5650,7 +5652,7 @@
 CVE-2014-6102
 	RESERVED
 CVE-2014-6101 (Cross-site scripting (XSS) vulnerability in the redirect-login feature ...)
-	TODO: check
+	NOT-FOR-US: IBM Business Process Manager
 CVE-2014-6100 (Cross-site scripting (XSS) vulnerability in the Admin UI in IBM Tivoli ...)
 	NOT-FOR-US: IBM Tivoli Directory Server
 CVE-2014-6099 (The Change Password feature in IBM Sterling B2B Integrator 5.2.x ...)
@@ -13479,9 +13481,9 @@
 CVE-2014-2989 (Cross-site request forgery (CSRF) vulnerability in Open Assessment ...)
 	NOT-FOR-US: Open Assessment Technologies TAO
 CVE-2014-2988 (EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware ...)
-	TODO: check
+	NOT-FOR-US: EGroupware EPL
 CVE-2014-2987 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: EGroupware EPL
 CVE-2013-7373 (Android before 4.4 does not properly arrange for seeding of the ...)
 	NOT-FOR-US: Android
 CVE-2013-7372 (The engineNextBytes function in ...)

More information about the Secure-testing-commits mailing list