[Secure-testing-commits] r37200 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Oct 20 19:24:00 UTC 2015 

Author: carnil
Date: 2015-10-20 19:24:00 +0000 (Tue, 20 Oct 2015)
New Revision: 37200

Modified:
   data/CVE/list
Log:
More NFUs from Adobe products

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-10-20 19:19:57 UTC (rev 37199)
+++ data/CVE/list	2015-10-20 19:24:00 UTC (rev 37200)
@@ -69,7 +69,7 @@
 CVE-2015-7831
 	RESERVED
 CVE-2015-7829 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7828
 	RESERVED
 CVE-2015-7827
@@ -609,27 +609,27 @@
 CVE-2015-7625 (Adobe Flash Player before 18.0.0.252 and 19.x before 19.0.0.207 on ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-7624 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7623 (The ANAuthenticateResource method in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7622 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7621 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7620 (The ANSendForBrowserReview method in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7619 (The ANShareFile2 method in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7618 (The CBAutoConfigCommentRepository method in Adobe Reader and Acrobat ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7617 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7616 (The ANVerifyComments method in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7615 (Use-after-free vulnerability in a SaveAs feature in Adobe Reader and ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7614 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-7612 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
 	NOT-FOR-US: McAfee
 CVE-2015-7665
@@ -2681,7 +2681,7 @@
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/09/01/8
 	TODO: check
 CVE-2015-6723 (The ANTrustPropagateAll method in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6806 (The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does ...)
 	{DSA-3352-1 DLA-305-1}
 	- screen 4.3.1-2 (bug #797624)
@@ -2712,9 +2712,9 @@
 CVE-2015-6726
 	RESERVED
 CVE-2015-6725 (The ANSendForSharedReview method in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6724 (The ANSendForApproval method in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-5723 [Security Misconfiguration Vulnerability in various Doctrine projects]
 	RESERVED
 	{DSA-3369-1}
@@ -2740,85 +2740,85 @@
 	NOTE: https://github.com/aws/aws-sdk-php/releases/tag/3.2.1
 	NOTE: http://framework.zend.com/security/advisory/ZF2015-07
 CVE-2015-6722 (The CBSharedReviewStatusDialog method in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6721 (The CBSharedReviewSecurityDialog method in Adobe Reader and Acrobat ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6720 (The ANRunSharedReviewEmailStep method in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6719 (The CBSharedReviewCloseDialog method in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6718 (The CBSharedReviewIfOfflineDialog method in Adobe Reader and Acrobat ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6717 (The DynamicAnnotStore method in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6716 (The ANSendForFormDistribution method in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6715 (The Function apply implementation in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6714 (The Function bind implementation in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6713 (The Function call implementation in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6712 (The ANSendApprovalToAuthorEnabled method in Adobe Reader and Acrobat ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6711 (The DoIdentityDialog method in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6710 (The CBBBRInit method in Adobe Reader and Acrobat 10.x before 10.1.16 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6709 (The CBBBRInvite method in Adobe Reader and Acrobat 10.x before 10.1.16 ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6708 (The ANStartApproval method in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6707 (The ANSendForReview method in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6706 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6705 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6704 (The animations property implementation in Adobe Reader and Acrobat ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6703 (The loadFlashMovie function in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6702 (The createSquareMesh function in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6701 (The ambientIlluminationColor property implementation in Adobe Reader ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6700 (The setBackground function in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6699 (The addForegroundSprite function in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6698 (Heap-based buffer overflow in the AcroForm implementation in Adobe ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6697 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6696 (Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6695 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6694 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6693 (The signatureSetSeedValue method in Adobe Reader and Acrobat 10.x ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6692 (Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.16 and ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6691 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6690 (Use-after-free vulnerability in the popUpMenuEx method in Adobe Reader ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6689 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6688 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6687 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6686 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6685 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6684 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6683 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-6682 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-6681 (Adobe Shockwave Player before 12.2.0.162 allows attackers to execute ...)
@@ -5469,13 +5469,13 @@
 CVE-2015-5587 (Stack-based buffer overflow in Adobe Flash Player before 18.0.0.241 ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-5586 (Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-5585
 	RESERVED
 CVE-2015-5584 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-5583 (Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2015-5582 (Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-5581 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.241 ...)

More information about the Secure-testing-commits mailing list