[Secure-testing-commits] r29845 - data/CVE

Federico Ceratto federico-guest at moszumanska.debian.org
Wed Nov 5 15:32:10 UTC 2014 

Author: federico-guest
Date: 2014-11-05 15:32:10 +0000 (Wed, 05 Nov 2014)
New Revision: 29845

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-05 15:07:33 UTC (rev 29844)
+++ data/CVE/list	2014-11-05 15:32:10 UTC (rev 29845)
@@ -21,7 +21,7 @@
 CVE-2014-8578 (Cross-site scripting (XSS) vulnerability in the Groups panel in ...)
 	TODO: check
 CVE-2014-8577 (Multiple cross-site scripting (XSS) vulnerabilities in Croogo before ...)
-	TODO: check
+	NOT-FOR-US: Croogo
 CVE-2014-8576
 	RESERVED
 CVE-2014-8575
@@ -85,7 +85,7 @@
 CVE-2014-8539
 	RESERVED
 CVE-2013-7409 (Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote ...)
-	TODO: check
+	NOT-FOR-US: ALLPlayer
 CVE-2014-XXXX [Privilege Escalation via KDE Clock KCM polkit helper]
 	- kde-workspace <unfixed>
 	NOTE: https://git.reviewboard.kde.org/r/120977/
@@ -213,9 +213,9 @@
 CVE-2014-8496
 	RESERVED
 CVE-2014-8495 (Citrix XenMobile MDX Toolkit before 9.0.4, when used to wrap iOS 8 ...)
-	TODO: check
+	NOT-FOR-US: Citrix XenMobile MDX Toolkit
 CVE-2014-8494 (ESTsoft ALUpdate 8.5.1.0.0 uses weak permissions (Users: Full Control) ...)
-	TODO: check
+	NOT-FOR-US: ESTsoft ALUpdate
 CVE-2014-8493
 	RESERVED
 CVE-2014-8492
@@ -6848,7 +6848,7 @@
 CVE-2014-5508 (Multiple integer overflows in the HelpServ module (mod-helpserv.c) in ...)
 	NOT-FOR-US: srvx (irc services)
 CVE-2014-5507 (iBackup 10.0.0.32 and earlier uses weak permissions (Everyone: Full ...)
-	TODO: check
+	NOT-FOR-US: iBackup
 CVE-2014-5506 (Double free vulnerability in SAP Crystal Reports allows remote ...)
 	NOT-FOR-US: SAP Crystal Reports
 CVE-2014-5505 (Stack-based buffer overflow in SAP Crystal Reports allows remote ...)
@@ -31797,7 +31797,7 @@
 CVE-2013-3305
 	RESERVED
 CVE-2013-3304 (Directory traversal vulnerability in Dell EqualLogic PS4000 with ...)
-	TODO: check
+	NOT-FOR-US: Dell EqualLogic PS4000
 CVE-2013-3303
 	RESERVED
 CVE-2013-3300 (The JsonParser class in json/JsonParser.scala in Lift before 2.5 ...)
@@ -36787,7 +36787,7 @@
 CVE-2013-1642
 	RESERVED
 CVE-2013-1641 (Directory traversal vulnerability in the zip download functionality in ...)
-	TODO: check
+	NOT-FOR-US: QuiXplorer
 CVE-2013-1640 (The (1) template and (2) inline_template functions in the master ...)
 	{DSA-2643-1}
 	- puppet 2.7.18-3

More information about the Secure-testing-commits mailing list