[Secure-testing-commits] r29645 - data/CVE

Helmut Grohne Sat, 25 Oct 2014 11:04:45 -0700

Author: helmutg
Date: 2014-10-25 18:03:33 +0000 (Sat, 25 Oct 2014)
New Revision: 29645


Modified:
   data/CVE/list
Log:
Apple NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2014-10-25 18:03:25 UTC (rev 29644)
+++ data/CVE/list       2014-10-25 18:03:33 UTC (rev 29645)
@@ -9168,51 +9168,51 @@
 CVE-2014-4448 (House Arrest in Apple iOS before 8.1 relies on the hardware UID 
for ...)
        TODO: check
 CVE-2014-4447 (Profile Manager in Apple OS X Server before 4.0 allows local 
users to ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4446 (Mail Service in Apple OS X Server before 4.0 does not enforce 
SACL ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4445
        RESERVED
 CVE-2014-4444 (SecurityAgent in Apple OS X before 10.10 does not ensure that a 
...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4443 (Apple OS X before 10.10 allows remote attackers to cause a 
denial of ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4442 (The kernel in Apple OS X before 10.10 allows local users to 
cause a ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4441 (NetFS Client Framework in Apple OS X before 10.10 does not 
ensure that ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4440 (The MCX Desktop Config Profiles implementation in Apple OS X 
before ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4439 (Mail in Apple OS X before 10.10 does not properly recognize the 
...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4438 (Race condition in LoginWindow in Apple OS X before 10.10 allows 
...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4437 (LaunchServices in Apple OS X before 10.10 allows attackers to 
bypass ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4436 (IOHIDFamily in Apple OS X before 10.10 allows attackers to 
cause ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4435 (The &quot;iCloud Find My Mac&quot; feature in Apple OS X before 
10.10 does not ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4434 (The kernel in Apple OS X before 10.10 allows physically 
proximate ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4433 (Heap-based buffer overflow in the kernel in Apple OS X before 
10.10 ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4432 (fdesetup in Apple OS X before 10.10 does not properly display 
the ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4431 (Dock in Apple OS X before 10.10 does not properly manage the 
...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4430 (CoreStorage in Apple OS X before 10.10 retains a volume's 
encryption ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4429
        RESERVED
 CVE-2014-4428 (Bluetooth in Apple OS X before 10.10 does not require 
encryption for ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4427 (App Sandbox in Apple OS X before 10.10 allows attackers to 
bypass a ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4426 (AFP File Server in Apple OS X before 10.10 allows remote 
attackers to ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4425 (CFPreferences in Apple OS X before 10.10 does not properly 
enforce the ...)
-       TODO: check
+       NOT-FOR-US: Apple OS X
 CVE-2014-4424 (SQL injection vulnerability in Wiki Server in CoreCollaboration 
in ...)
        NOT-FOR-US: Apple Mac OS X
 CVE-2014-4423 (The Accounts subsystem in Apple iOS before 8 allows attackers 
to ...)
@@ -9228,7 +9228,7 @@
 CVE-2014-4418 (IOKit in Apple iOS before 8 and Apple TV before 7 does not 
properly ...)
        NOT-FOR-US: Apple
 CVE-2014-4417 (Safari in Apple OS X before 10.10 allows remote attackers to 
cause a ...)
-       TODO: check
+       NOT-FOR-US: Apple Safari
 CVE-2014-4416 (An unspecified integrated graphics driver routine in the Intel 
...)
        NOT-FOR-US: Apples Mac OS X
 CVE-2014-4415 (WebKit, as used in Apple iOS before 8 and Apple TV before 7, 
allows ...)
@@ -9280,7 +9280,7 @@
 CVE-2014-4392
        RESERVED
 CVE-2014-4391 (The Code Signing feature in Apple OS X before 10.10 does not 
properly ...)
-       TODO: check
+       NOT-FOR-US: Apple Mac OS X
 CVE-2014-4390 (Bluetooth in Apple OS X before 10.9.5 does not properly 
validate API ...)
        NOT-FOR-US: Apple Mac OS X
 CVE-2014-4389 (Integer overflow in IOKit in Apple iOS before 8 and Apple TV 
before 7 ...)
@@ -9360,7 +9360,7 @@
 CVE-2014-4352 (Address Book in Apple iOS before 8 relies on the hardware UID 
for its ...)
        NOT-FOR-US: Apple
 CVE-2014-4351 (Buffer overflow in QuickTime in Apple OS X before 10.10 allows 
remote ...)
-       TODO: check
+       NOT-FOR-US: Apple QuickTime
 CVE-2014-4350 (Buffer overflow in QT Media Foundation in Apple OS X before 
10.9.5 ...)
        NOT-FOR-US: QT Media Foundation in Apple OS X
 CVE-2014-4349 (Multiple cross-site scripting (XSS) vulnerabilities in 
phpMyAdmin ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r29645 - data/CVE

Reply via email to