[Secure-testing-commits] r38422 - data/CVE

Michael Gilbert mgilbert at moszumanska.debian.org
Fri Dec 18 23:28:25 UTC 2015 

Author: mgilbert
Date: 2015-12-18 23:28:25 +0000 (Fri, 18 Dec 2015)
New Revision: 38422

Modified:
   data/CVE/list
Log:
nfus

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-12-18 21:55:08 UTC (rev 38421)
+++ data/CVE/list	2015-12-18 23:28:25 UTC (rev 38422)
@@ -393,15 +393,15 @@
 CVE-2015-8582
 	RESERVED
 CVE-2015-8581 (The EjbObjectInputStream class in Apache TomEE allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Apache TomEE
 CVE-2015-8580 (Multiple use-after-free vulnerabilities in the (1) Print method and ...)
-	TODO: check
+	NOT-FOR-US: Foxit
 CVE-2015-8579 (Kaspersky Total Security 2015 15.0.2.361 allocates memory with Read, ...)
-	TODO: check
+	NOT-FOR-US: Kaspersky
 CVE-2015-8578 (AVG Internet Security 2015 allocates memory with Read, Write, Execute ...)
-	TODO: check
+	NOT-FOR-US: AVG
 CVE-2015-8577 (The Buffer Overflow Protection (BOP) feature in McAfee VirusScan ...)
-	TODO: check
+	NOT-FOR-US: McAfee
 CVE-2015-8576
 	RESERVED
 CVE-2015-8574
@@ -413,28 +413,28 @@
 	[squeeze] - xen <end-of-life> (Unsupported in Squeeze LTS)
 	NOTE: http://xenbits.xen.org/xsa/advisory-166.html
 CVE-2015-8572 (Multiple buffer overflows in Autodesk Design Review (ADR) before 2013 ...)
-	TODO: check
+	NOT-FOR-US: Autodesk
 CVE-2015-8571 (Integer overflow in Autodesk Design Review (ADR) before 2013 Hotfix 2 ...)
-	TODO: check
+	NOT-FOR-US: Autodesk
 CVE-2015-8570 (The password reset functionality in Lepide Active Directory Self ...)
-	TODO: check
+	NOT-FOR-US: Lepide
 CVE-2015-8575 [sco_sock_bind issue]
 	RESERVED
 	- linux <unfixed>
 	- linux-2.6 <removed>
 	NOTE: pstream commit (not yet in Linus tree): http://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=5233252fce714053f0151680933571a2da9cbfb4
 CVE-2015-8566 (The Session package 1.x before 1.3.1 for Joomla! Framework allows ...)
-	TODO: check
+	NOT-FOR-US: Session package for Joomla
 CVE-2015-8565 (Directory traversal vulnerability in Joomla! 3.2.0 through 3.3.x and ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2015-8564 (Directory traversal vulnerability in Joomla! 3.4.x before 3.4.6 allows ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2015-8563 (Cross-site request forgery (CSRF) vulnerability in the com_templates ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2015-8562 (Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2015-8561 (The F1BookView ActiveX control in F1 Bookview in Schneider Electric ...)
-	TODO: check
+	NOT-FOR-US: F1BookView
 CVE-2015-8555 [information leak in legacy x86 FPU/XMM initialization]
 	RESERVED
 	- xen <unfixed>
@@ -2279,7 +2279,7 @@
 CVE-2015-8421 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 ...)
 	NOT-FOR-US: Adobe Flash
 CVE-2015-8420 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 ...)
-	TODO: check
+	NOT-FOR-US: Adobe Flash
 CVE-2015-8419 (Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before ...)
 	NOT-FOR-US: Adobe Flash
 CVE-2015-8418 (Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before ...)
@@ -2295,7 +2295,7 @@
 CVE-2015-8413 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 ...)
 	NOT-FOR-US: Adobe Flash
 CVE-2015-8412 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 ...)
-	TODO: check
+	NOT-FOR-US: Adobe Flash
 CVE-2015-8411 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 ...)
 	NOT-FOR-US: Adobe Flash
 CVE-2015-8410 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 ...)
@@ -2424,9 +2424,9 @@
 CVE-2015-8359
 	RESERVED
 CVE-2015-8358 (Directory traversal vulnerability in the bitrix.mpbuilder module ...)
-	TODO: check
+	NOT-FOR-US: Bitrix
 CVE-2015-8357 (Directory traversal vulnerability in the bitrix.xscan module before ...)
-	TODO: check
+	NOT-FOR-US: Bitrix
 CVE-2015-8356
 	RESERVED
 CVE-2015-8355
@@ -2756,7 +2756,7 @@
 CVE-2015-8248
 	RESERVED
 CVE-2015-8247 (Cross-site scripting (XSS) vulnerability in synnefoclient in Synnefo ...)
-	TODO: check
+	NOT-FOR-US: Synnefo
 CVE-2015-8246
 	RESERVED
 CVE-2015-8245
@@ -3716,7 +3716,7 @@
 CVE-2015-7919
 	RESERVED
 CVE-2015-7918 (Multiple buffer overflows in the F1BookView ActiveX control in F1 ...)
-	TODO: check
+	NOT-FOR-US: F1BookView
 CVE-2015-7917
 	RESERVED
 CVE-2015-7916

More information about the Secure-testing-commits mailing list