Author: carnil
Date: 2014-02-24 18:25:41 +0000 (Mon, 24 Feb 2014)
New Revision: 25874
Modified:
data/CVE/list
Log:
Update NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-24 18:25:34 UTC (rev 25873)
+++ data/CVE/list 2014-02-24 18:25:41 UTC (rev 25874)
@@ -314,7 +314,7 @@
[wheezy] - php5 <not-affected> (Vulnerable code was introduced in 5.5.0)
[squeeze] - php5 <not-affected> (Vulnerable code was introduced in
5.5.0)
CVE-2013-7326 (Cross-site scripting (XSS) vulnerability in vTiger CRM 5.4.0
allows ...)
- TODO: check
+ NOT-FOR-US: vTiger CRM
CVE-2013-7324
RESERVED
CVE-2012-6638 (The tcp_rcv_state_process function in net/ipv4/tcp_input.c in
the ...)
@@ -4451,7 +4451,7 @@
CVE-2014-0330 (Cross-site scripting (XSS) vulnerability in
adminui/user_list.php on ...)
NOT-FOR-US: Dell KACE K1000 management appliance
CVE-2014-0329 (The TELNET service on the ZTE ZXV10 W300 router 2.1.0 has a
hardcoded ...)
- TODO: check
+ NOT-FOR-US: TELNET service on the ZTE ZXV10 W300 router
CVE-2014-0328
RESERVED
CVE-2014-0327
@@ -4767,7 +4767,7 @@
CVE-2014-0323
RESERVED
CVE-2014-0322 (Use-after-free vulnerability in Microsoft Internet Explorer 10
allows ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer 10
CVE-2014-0321
RESERVED
CVE-2014-0320
@@ -4879,7 +4879,7 @@
CVE-2014-0267 (Microsoft Internet Explorer 11 allows remote attackers to
execute ...)
NOT-FOR-US: Microsoft Internet Explorer
CVE-2014-0266 (The XMLHTTP ActiveX controls in XML Core Services 3.0 in
Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2014-0265
RESERVED
CVE-2014-0264
@@ -4897,15 +4897,15 @@
CVE-2014-0258 (Microsoft Word 2003 SP3 and 2007 SP3, Office Compatibility Pack
SP3, ...)
NOT-FOR-US: Microsoft Office
CVE-2014-0257 (Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1,
4, ...)
- TODO: check
+ NOT-FOR-US: Microsoft .NET Framework
CVE-2014-0256
RESERVED
CVE-2014-0255
RESERVED
CVE-2014-0254 (The IPv6 implementation in Microsoft Windows 8, Windows Server
2012, ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2014-0253 (Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5,
and ...)
- TODO: check
+ NOT-FOR-US: Microsoft .NET Framework
CVE-2014-0252
RESERVED
CVE-2014-0251
@@ -5962,7 +5962,7 @@
CVE-2013-6723 (IBM WebSphere Portal 8.0.0.1 before CF09 does not properly
handle ...)
NOT-FOR-US: IBM WebSphere Portal
CVE-2013-6722 (Unrestricted file upload vulnerability in the Registration/Edit
My ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2013-6721 (Cross-site scripting (XSS) vulnerability in IBM WebSphere
Service ...)
NOT-FOR-US: IBM WebSphere Service Registry and Repository
CVE-2013-6720
@@ -7753,9 +7753,9 @@
CVE-2013-6036
RESERVED
CVE-2013-6035 (The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN
...)
- TODO: check
+ NOT-FOR-US: Inmarsat broadband satellite terminals
CVE-2013-6034 (The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN
...)
- TODO: check
+ NOT-FOR-US: Inmarsat broadband satellite terminals
CVE-2013-6033 (Multiple cross-site scripting (XSS) vulnerabilities on Lexmark
W840 ...)
NOT-FOR-US: Lexmark
CVE-2013-6032 (cgi-bin/postpf/cgi-bin/dynamic/config/config.html on Lexmark
X94x ...)
@@ -7775,7 +7775,7 @@
CVE-2013-6025 (The XMLParse procedure in SAP Sybase Adaptive Server Enterprise
(ASE) ...)
NOT-FOR-US: SAP Sybase Adaptive Server Enterprise
CVE-2013-6024 (The Edge Client components in F5 BIG-IP APM 10.x through 10.2.4
and ...)
- TODO: check
+ NOT-FOR-US: F5 BIG-IP
CVE-2013-6023 (Directory traversal vulnerability in the TVT TD-2308SS-B DVR
with ...)
NOT-FOR-US: TVT TD-2308SS-B DVR
CVE-2013-6022
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
