[Secure-testing-commits] r35604 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Jul 21 17:28:40 UTC 2015 

Author: carnil
Date: 2015-07-21 17:28:40 +0000 (Tue, 21 Jul 2015)
New Revision: 35604

Modified:
   data/CVE/list
Log:
Process some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-07-21 17:05:54 UTC (rev 35603)
+++ data/CVE/list	2015-07-21 17:28:40 UTC (rev 35604)
@@ -68,7 +68,7 @@
 CVE-2015-5529 (Multiple cross-site scripting (XSS) vulnerabilities in Free ...)
 	TODO: check
 CVE-2015-5528 (Cross-site scripting (XSS) vulnerability in the save_order function in ...)
-	TODO: check
+	NOT-FOR-US: save_order function in class-floating-social-bar.php in the Floating Social Bar plugin for WordPress
 CVE-2015-XXXX [d-i uses preseed data from DHCP when installing from DVD]
 	- debian-installer <unfixed> (low; bug #788634)
 	[jessie] - debian-installer <no-dsa> (Can only be fixed through point updates when new images are created)
@@ -8380,9 +8380,9 @@
 CVE-2015-2418
 	RESERVED
 CVE-2015-2417 (OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2416 (OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2415 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 ...)
 	TODO: check
 CVE-2015-2414 (Microsoft Internet Explorer 8 through 11 allows remote attackers to ...)
@@ -8440,7 +8440,7 @@
 CVE-2015-2388 (Microsoft Internet Explorer 8 and 9 allows remote attackers to execute ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2015-2387 (ATMFD.DLL in the Adobe Type Manager Font Driver in Microsoft Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2386
 	RESERVED
 CVE-2015-2385 (Microsoft Internet Explorer 6 through 11 allows remote attackers to ...)
@@ -8450,9 +8450,9 @@
 CVE-2015-2383 (Microsoft Internet Explorer 11 allows remote attackers to execute ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2015-2382 (win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2381 (win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2380 (Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 ...)
 	TODO: check
 CVE-2015-2379 (Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 ...)
@@ -8466,33 +8466,33 @@
 CVE-2015-2375 (Microsoft Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel ...)
 	TODO: check
 CVE-2015-2374 (The Netlogon service in Microsoft Windows Server 2003 SP2 and R2 SP2, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2373 (The Remote Desktop Protocol (RDP) server service in Microsoft Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2372 (vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with ...)
 	TODO: check
 CVE-2015-2371 (The Windows Installer service in Microsoft Windows Server 2003 SP2 and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2370 (The authentication implementation in the RPC subsystem in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2369 (Untrusted search path vulnerability in Windows Media Device Manager in ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2368 (Untrusted search path vulnerability in Microsoft Windows 7 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2367 (win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2366 (win32k.sys in the kernel-mode drivers in Microsoft Windows 7 SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2365 (win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2364 (The graphics component in Microsoft Windows Server 2003 SP2 and R2 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2363 (win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2362 (Hyper-V in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 8, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2361 (Hyper-V in Microsoft Windows 8.1 and Windows Server 2012 R2 does not ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2015-2360 (win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 ...)
 	NOT-FOR-US: Microsoft Windows Server
 CVE-2015-2359 (Cross-site scripting (XSS) vulnerability in the web applications in ...)

More information about the Secure-testing-commits mailing list