[Secure-testing-commits] r36138 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Aug 18 12:24:13 UTC 2015 

Author: carnil
Date: 2015-08-18 12:24:13 +0000 (Tue, 18 Aug 2015)
New Revision: 36138

Modified:
   data/CVE/list
Log:
Mark a couple of NFUs in Microsoft Windows

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-08-18 12:15:22 UTC (rev 36137)
+++ data/CVE/list	2015-08-18 12:24:13 UTC (rev 36138)
@@ -10194,15 +10194,15 @@
 CVE-2015-2477 (Microsoft Office 2007 SP3, Office for Mac 2011, Office for Mac 2016, ...)
 	TODO: check
 CVE-2015-2476 (The WebDAV client in Microsoft Windows Vista SP2, Windows Server 2008 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2475 (Cross-site scripting (XSS) vulnerability in uddi/search/frames.aspx in ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2474 (Microsoft Windows Vista SP2 and Server 2008 SP2 allow remote ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2473 (Untrusted search path vulnerability in the client in Remote Desktop ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2472 (Remote Desktop Session Host (RDSH) in Remote Desktop Protocol (RDP) ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2471 (Microsoft XML Core Services 3.0, 5.0, and 6.0 supports SSL 2.0, which ...)
 	TODO: check
 CVE-2015-2470 (Integer underflow in Microsoft Office 2007 SP3, Office 2010 SP2, ...)
@@ -10216,31 +10216,31 @@
 CVE-2015-2466 (Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allows ...)
 	TODO: check
 CVE-2015-2465 (The Windows shell in Microsoft Windows Vista SP2, Windows Server 2008 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2464 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2463 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2462 (ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2461 (ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2460 (ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2459 (ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2458 (ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2457
 	RESERVED
 CVE-2015-2456 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2455 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2454 (The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2453 (The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2452 (Microsoft Internet Explorer 7 through 11 allows remote attackers to ...)
 	TODO: check
 CVE-2015-2451 (Microsoft Internet Explorer 9 through 11 allows remote attackers to ...)
@@ -10276,21 +10276,21 @@
 CVE-2015-2436
 	RESERVED
 CVE-2015-2435 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2434 (Microsoft XML Core Services 3.0 and 5.0 supports SSL 2.0, which makes ...)
 	TODO: check
 CVE-2015-2433 (The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2432 (ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2431 (Microsoft Office 2007 SP3 and 2010 SP2, Live Meeting 2007 Console, ...)
 	TODO: check
 CVE-2015-2430 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2429 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2428 (Object Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2427
 	RESERVED
 CVE-2015-2426 (Buffer underflow in atmfd.dll in the Windows Adobe Type Manager ...)
@@ -10300,7 +10300,7 @@
 CVE-2015-2424 (Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, ...)
 	NOT-FOR-US: Microsoft
 CVE-2015-2423 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2422 (Microsoft Internet Explorer 6 through 11 allows remote attackers to ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2015-2421 (Microsoft Internet Explorer 6 through 11 allows remote attackers to ...)
@@ -12372,7 +12372,7 @@
 CVE-2015-1770 (Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to ...)
 	NOT-FOR-US: Microsoft Office
 CVE-2015-1769 (Mount Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-1768 (win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 ...)
 	NOT-FOR-US: Microsoft Windows Server
 CVE-2015-1767 (Microsoft Internet Explorer 9 through 11 allows remote attackers to ...)

More information about the Secure-testing-commits mailing list