[Secure-testing-commits] r34837 - data/CVE

Helmut Grohne helmutg at moszumanska.debian.org
Tue Jun 9 21:33:42 UTC 2015 

Author: helmutg
Date: 2015-06-09 21:33:42 +0000 (Tue, 09 Jun 2015)
New Revision: 34837

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-06-09 21:10:15 UTC (rev 34836)
+++ data/CVE/list	2015-06-09 21:33:42 UTC (rev 34837)
@@ -462,6 +462,7 @@
 	RESERVED
 CVE-2015-4038
 	RESERVED
+	NOT-FOR-US: WordPress plugin WP Membership
 CVE-2015-4037
 	RESERVED
 	- qemu 1:2.3+dfsg-5
@@ -3404,7 +3405,7 @@
 CVE-2015-2947
 	RESERVED
 CVE-2015-2946 (Stack-based buffer overflow in the Open CAD Format Council SXF common ...)
-	TODO: check
+	NOT-FOR-US: Open CAD Format Council SXF common library
 CVE-2015-2945 (mt-phpincgi.php in Hajime Fujimoto mt-phpincgi before 2015-05-15 does ...)
 	NOT-FOR-US: Hajime Fujimoto mt-phpincgi
 CVE-2015-2944 (Multiple cross-site scripting (XSS) vulnerabilities in Apache Sling ...)
@@ -5339,7 +5340,7 @@
 CVE-2015-2283
 	RESERVED
 CVE-2015-2282 (Stack-based buffer overflow in the LZC decompression implementation ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2015-2281 (Stack-based buffer overflow in collectoragent.exe in Fortinet Single ...)
 	NOT-FOR-US: Fortinet Single Sign On
 CVE-2015-2280
@@ -5347,7 +5348,7 @@
 CVE-2015-2279
 	RESERVED
 CVE-2015-2278 (The LZH decompression implementation (CsObjectInt::BuildHufTree ...)
-	TODO: check
+	NOT-FOR-US: SAP
 CVE-2015-2277
 	RESERVED
 CVE-2015-2276
@@ -10300,18 +10301,25 @@
 	RESERVED
 CVE-2015-0766
 	RESERVED
+	NOT-FOR-US: Cisco
 CVE-2015-0765
 	RESERVED
+	NOT-FOR-US: Cisco
 CVE-2015-0764
 	RESERVED
+	NOT-FOR-US: Cisco Unified MeetingPlace
 CVE-2015-0763
 	RESERVED
+	NOT-FOR-US: Cisco Unified MeetingPlace
 CVE-2015-0762
 	RESERVED
+	NOT-FOR-US: Cisco Unified MeetingPlace
 CVE-2015-0761
 	RESERVED
+	NOT-FOR-US: Cisco AnyConnect Secure Mobility Client
 CVE-2015-0760
 	RESERVED
+	NOT-FOR-US: Cisco ASA
 CVE-2015-0759 (Cross-site request forgery (CSRF) vulnerability in Cisco Headend ...)
 	NOT-FOR-US: Cisco
 CVE-2015-0758 (The web-based user interface in Cisco Unified MeetingPlace 8.6(1.9) ...)
@@ -15659,7 +15667,7 @@
 CVE-2014-8392
 	RESERVED
 CVE-2014-8391 (The Web interface in Sendio before 7.2.4 does not properly handle ...)
-	TODO: check
+	NOT-FOR-US: Sendio
 CVE-2014-8390 (Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 ...)
 	NOT-FOR-US: Schneider Electric
 CVE-2014-8389
@@ -34540,7 +34548,7 @@
 CVE-2014-1201 (Buffer overflow in the INetViewX ActiveX control in the Lorex Edge ...)
 	NOT-FOR-US: Lorex
 CVE-2014-0999 (Sendio before 7.2.4 includes the session identifier in URLs in emails, ...)
-	TODO: check
+	NOT-FOR-US: Sendio
 CVE-2014-0998 (Integer signedness error in the vt console driver (formerly Newcons) ...)
 	- kfreebsd-10 10.1~svn274115-3 (bug #779194)
 	- kfreebsd-9 <not-affected> (don't have newcons)

More information about the Secure-testing-commits mailing list