[Secure-testing-commits] r29645 - data/CVE
Helmut Grohne
helmutg at moszumanska.debian.org
Sat Oct 25 18:03:33 UTC 2014
Author: helmutg
Date: 2014-10-25 18:03:33 +0000 (Sat, 25 Oct 2014)
New Revision: 29645
Modified:
data/CVE/list
Log:
Apple NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-10-25 18:03:25 UTC (rev 29644)
+++ data/CVE/list 2014-10-25 18:03:33 UTC (rev 29645)
@@ -9168,51 +9168,51 @@
CVE-2014-4448 (House Arrest in Apple iOS before 8.1 relies on the hardware UID for ...)
TODO: check
CVE-2014-4447 (Profile Manager in Apple OS X Server before 4.0 allows local users to ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4446 (Mail Service in Apple OS X Server before 4.0 does not enforce SACL ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4445
RESERVED
CVE-2014-4444 (SecurityAgent in Apple OS X before 10.10 does not ensure that a ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4443 (Apple OS X before 10.10 allows remote attackers to cause a denial of ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4442 (The kernel in Apple OS X before 10.10 allows local users to cause a ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4441 (NetFS Client Framework in Apple OS X before 10.10 does not ensure that ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4440 (The MCX Desktop Config Profiles implementation in Apple OS X before ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4439 (Mail in Apple OS X before 10.10 does not properly recognize the ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4438 (Race condition in LoginWindow in Apple OS X before 10.10 allows ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4437 (LaunchServices in Apple OS X before 10.10 allows attackers to bypass ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4436 (IOHIDFamily in Apple OS X before 10.10 allows attackers to cause ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4435 (The "iCloud Find My Mac" feature in Apple OS X before 10.10 does not ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4434 (The kernel in Apple OS X before 10.10 allows physically proximate ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4433 (Heap-based buffer overflow in the kernel in Apple OS X before 10.10 ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4432 (fdesetup in Apple OS X before 10.10 does not properly display the ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4431 (Dock in Apple OS X before 10.10 does not properly manage the ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4430 (CoreStorage in Apple OS X before 10.10 retains a volume's encryption ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4429
RESERVED
CVE-2014-4428 (Bluetooth in Apple OS X before 10.10 does not require encryption for ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4427 (App Sandbox in Apple OS X before 10.10 allows attackers to bypass a ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4426 (AFP File Server in Apple OS X before 10.10 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4425 (CFPreferences in Apple OS X before 10.10 does not properly enforce the ...)
- TODO: check
+ NOT-FOR-US: Apple OS X
CVE-2014-4424 (SQL injection vulnerability in Wiki Server in CoreCollaboration in ...)
NOT-FOR-US: Apple Mac OS X
CVE-2014-4423 (The Accounts subsystem in Apple iOS before 8 allows attackers to ...)
@@ -9228,7 +9228,7 @@
CVE-2014-4418 (IOKit in Apple iOS before 8 and Apple TV before 7 does not properly ...)
NOT-FOR-US: Apple
CVE-2014-4417 (Safari in Apple OS X before 10.10 allows remote attackers to cause a ...)
- TODO: check
+ NOT-FOR-US: Apple Safari
CVE-2014-4416 (An unspecified integrated graphics driver routine in the Intel ...)
NOT-FOR-US: Apples Mac OS X
CVE-2014-4415 (WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows ...)
@@ -9280,7 +9280,7 @@
CVE-2014-4392
RESERVED
CVE-2014-4391 (The Code Signing feature in Apple OS X before 10.10 does not properly ...)
- TODO: check
+ NOT-FOR-US: Apple Mac OS X
CVE-2014-4390 (Bluetooth in Apple OS X before 10.9.5 does not properly validate API ...)
NOT-FOR-US: Apple Mac OS X
CVE-2014-4389 (Integer overflow in IOKit in Apple iOS before 8 and Apple TV before 7 ...)
@@ -9360,7 +9360,7 @@
CVE-2014-4352 (Address Book in Apple iOS before 8 relies on the hardware UID for its ...)
NOT-FOR-US: Apple
CVE-2014-4351 (Buffer overflow in QuickTime in Apple OS X before 10.10 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2014-4350 (Buffer overflow in QT Media Foundation in Apple OS X before 10.9.5 ...)
NOT-FOR-US: QT Media Foundation in Apple OS X
CVE-2014-4349 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...)
More information about the Secure-testing-commits
mailing list