[Secure-testing-commits] r35585 - data/CVE

Helmut Grohne helmutg at moszumanska.debian.org
Mon Jul 20 05:40:36 UTC 2015 

Author: helmutg
Date: 2015-07-20 05:40:36 +0000 (Mon, 20 Jul 2015)
New Revision: 35585

Modified:
   data/CVE/list
Log:
misc NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-07-20 05:40:27 UTC (rev 35584)
+++ data/CVE/list	2015-07-20 05:40:36 UTC (rev 35585)
@@ -510,7 +510,7 @@
 	- nodejs <not-affected> (Only affects 0.12.x)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/07/05/1
 CVE-2015-5365 (Cross-site scripting (XSS) vulnerability in Zurmo CRM 3.0.2 allows ...)
-	TODO: check
+	NOT-FOR-US: Zurmo CRM
 CVE-2015-5363 (The SRX Network Security Daemon (nsd) in Juniper SRX Series services ...)
 	TODO: check
 CVE-2015-5362 (The BFD daemon in Juniper Junos OS 12.1X44 before 12.1X44-D50, 12.1X46 ...)
@@ -3338,7 +3338,7 @@
 CVE-2015-4130
 	RESERVED
 CVE-2015-4129 (SQL injection vulnerability in Subrion CMS before 3.3.3 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Subrion CMS
 CVE-2015-4128
 	RESERVED
 CVE-2015-4127 (Cross-site scripting (XSS) vulnerability in the church_admin plugin ...)
@@ -5263,7 +5263,7 @@
 CVE-2015-3444
 	RESERVED
 CVE-2015-3443 (Cross-site scripting (XSS) vulnerability in the basic dashboard in ...)
-	TODO: check
+	NOT-FOR-US: Thycotic Secret Server
 CVE-2015-3442
 	RESERVED
 CVE-2015-3441
@@ -6765,7 +6765,7 @@
 CVE-2015-2965 (Directory traversal vulnerability in osCommerce Japanese 2.2ms1j-R8 ...)
 	NOT-FOR-US: osCommerce Japanese
 CVE-2015-2964 (NAMSHI | JOSE 5.0.0 and earlier allows remote attackers to bypass ...)
-	TODO: check
+	NOT-FOR-US: NAMSHI | JOSE
 CVE-2015-2963 (The thoughtbot paperclip gem before 4.2.2 for Ruby does not consider ...)
 	TODO: check
 CVE-2015-2962 (CGI RESCUE BloBee 1.20 and earlier allows remote attackers to write to ...)
@@ -9794,7 +9794,7 @@
 CVE-2015-1967 (MQ Explorer in IBM WebSphere MQ before 8.0.0.3 does not recognize the ...)
 	NOT-FOR-US: IBM
 CVE-2015-1966 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli ...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli Federated Identity Manager
 CVE-2015-1965 (Stack-based buffer overflow in the server in IBM Tivoli Storage ...)
 	NOT-FOR-US: IBM
 CVE-2015-1964 (Stack-based buffer overflow in the server in IBM Tivoli Storage ...)

More information about the Secure-testing-commits mailing list