[Secure-testing-commits] r35711 - data/CVE

Michael Gilbert mgilbert at moszumanska.debian.org
Sat Jul 25 20:49:45 UTC 2015 

Author: mgilbert
Date: 2015-07-25 20:49:45 +0000 (Sat, 25 Jul 2015)
New Revision: 35711

Modified:
   data/CVE/list
Log:
some nfus

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-07-25 15:34:55 UTC (rev 35710)
+++ data/CVE/list	2015-07-25 20:49:45 UTC (rev 35711)
@@ -34,9 +34,9 @@
 	NOTE: https://core.trac.wordpress.org/changeset/33359
 	TODO: check affected versions
 CVE-2015-5611 (Unspecified vulnerability in Uconnect 15.26.1, as used in certain Fiat ...)
-	TODO: check
+	NOT-FOR-US: Uconnect
 CVE-2015-5610 (The RSM (aka RSMWinService) service in SolarWinds N-Able N-Central ...)
-	TODO: check
+	NOT-FOR-US: SolarWinds
 CVE-2015-5609
 	RESERVED
 CVE-2015-5608
@@ -275,9 +275,9 @@
 	RESERVED
 	NOT-FOR-US: WordPress plugin paid-memberships-pro
 CVE-2015-5530 (Multiple cross-site request forgery (CSRF) vulnerabilities in Free ...)
-	TODO: check
+	NOT-FOR-US: Free Reprintables
 CVE-2015-5529 (Multiple cross-site scripting (XSS) vulnerabilities in Free ...)
-	TODO: check
+	NOT-FOR-US: Free Reprintables
 CVE-2015-5528 (Cross-site scripting (XSS) vulnerability in the save_order function in ...)
 	NOT-FOR-US: save_order function in class-floating-social-bar.php in the Floating Social Bar plugin for WordPress
 CVE-2015-XXXX [d-i uses preseed data from DHCP when installing from DVD]
@@ -303,11 +303,11 @@
 	- elasticsearch 1.6.1+dfsg-1 (bug #792617)
 	NOTE: https://www.elastic.co/blog/elasticsearch-1-7-0-and-1-6-1-released#security
 CVE-2015-5521 (Cross-site scripting (XSS) vulnerability in BlackCat CMS 1.1.2 allows ...)
-	TODO: check
+	NOT-FOR-US: BlackCat CMS
 CVE-2015-5520 (Cross-site scripting (XSS) vulnerability in the Users module in ...)
-	TODO: check
+	NOT-FOR-US: BlackCat CMS
 CVE-2015-5519 (Cross-site scripting (XSS) vulnerability in the applyConvolution demo ...)
-	TODO: check
+	NOT-FOR-US: WideImage
 CVE-2015-5518
 	RESERVED
 CVE-2015-5517
@@ -425,7 +425,7 @@
 CVE-2015-5465
 	RESERVED
 CVE-2015-5464 (Unspecified vulnerability on the Gemalto SafeNet Luna HSM has unknown ...)
-	TODO: check
+	NOT-FOR-US: Gemalto
 CVE-2015-5463
 	RESERVED
 CVE-2015-5462
@@ -460,11 +460,11 @@
 CVE-2015-5461 (Open redirect vulnerability in the Redirect function in ...)
 	NOT-FOR-US: Redirect function in stageshow_redirect.php in the StageShow plugin for WordPress
 CVE-2015-5460 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Snorby
 CVE-2015-5459 (SQL injection vulnerability in the AdvanceSearch.class in ...)
-	TODO: check
+	NOT-FOR-US: Password Manager Pro
 CVE-2015-5458 (Session fixation vulnerability in fileupload.php in PivotX before ...)
-	TODO: check
+	NOT-FOR-US: PivotX
 CVE-2015-5457 (PivotX before 2.3.11 does not validate the new file extension when ...)
 	TODO: check
 CVE-2015-5456 (Cross-site scripting (XSS) vulnerability in the form method in ...)

More information about the Secure-testing-commits mailing list