[Secure-testing-commits] r39752 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-02-18 05:42:42 +0000 (Thu, 18 Feb 2016)
New Revision: 39752

Modified:
   data/CVE/list
Log:
Mark some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-02-17 21:10:13 UTC (rev 39751)
+++ data/CVE/list	2016-02-18 05:42:42 UTC (rev 39752)
@@ -3861,15 +3861,15 @@
 CVE-2016-1154
 	RESERVED
 CVE-2016-1153 (customapp in Cybozu Office 9.9.0 through 10.3.0 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2016-1152 (Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2016-1151 (Multiple cross-site request forgery (CSRF) vulnerabilities in Cybozu ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2016-1150 (Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2016-1149 (Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2016-1148
 	RESERVED
 CVE-2016-1147
@@ -6741,19 +6741,19 @@
 CVE-2015-8490
 	RESERVED
 CVE-2015-8489 (customapp in Cybozu Office 9.9.0 through 10.3.0 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-8488 (Cybozu Office 10.3.0 allows remote attackers to read image files via a ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-8487 (Cybozu Office 9.0.0 through 10.3 allows remote attackers to discover ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-8486 (Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-8485 (Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-8484 (Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-8483 (Open redirect vulnerability in Cybozu Office 10.2.0 through 10.3.0 ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-8482 (Blue Coat Unified Agent before 4.6.2 does not prevent modification of ...)
 	NOT-FOR-US: Blue Coat Unified Agent
 CVE-2015-8481 (Atlassian JIRA Software 7.0.3, JIRA Core 7.0.3, and the bundled JIRA ...)
@@ -9309,13 +9309,13 @@
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0baa57d8dc32db78369d8b5176ef56c5e2e18ab3
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4ab42d78e37a294ac7bc56901d563c642e03c4ae
 CVE-2015-7798 (Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-7797 (Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-7796 (Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-7795 (Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Office
 CVE-2015-7794 (Corega CG-WLNCM4G devices provide an open DNS resolver, which allows ...)
 	TODO: check
 CVE-2015-7793 (Corega CG-WLBARAGM devices provide an open proxy service, which allows ...)