Author: helmutg Date: 2014-10-25 18:03:33 +0000 (Sat, 25 Oct 2014) New Revision: 29645
Modified: data/CVE/list Log: Apple NFUs Modified: data/CVE/list =================================================================== --- data/CVE/list 2014-10-25 18:03:25 UTC (rev 29644) +++ data/CVE/list 2014-10-25 18:03:33 UTC (rev 29645) @@ -9168,51 +9168,51 @@ CVE-2014-4448 (House Arrest in Apple iOS before 8.1 relies on the hardware UID for ...) TODO: check CVE-2014-4447 (Profile Manager in Apple OS X Server before 4.0 allows local users to ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4446 (Mail Service in Apple OS X Server before 4.0 does not enforce SACL ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4445 RESERVED CVE-2014-4444 (SecurityAgent in Apple OS X before 10.10 does not ensure that a ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4443 (Apple OS X before 10.10 allows remote attackers to cause a denial of ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4442 (The kernel in Apple OS X before 10.10 allows local users to cause a ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4441 (NetFS Client Framework in Apple OS X before 10.10 does not ensure that ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4440 (The MCX Desktop Config Profiles implementation in Apple OS X before ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4439 (Mail in Apple OS X before 10.10 does not properly recognize the ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4438 (Race condition in LoginWindow in Apple OS X before 10.10 allows ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4437 (LaunchServices in Apple OS X before 10.10 allows attackers to bypass ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4436 (IOHIDFamily in Apple OS X before 10.10 allows attackers to cause ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4435 (The "iCloud Find My Mac" feature in Apple OS X before 10.10 does not ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4434 (The kernel in Apple OS X before 10.10 allows physically proximate ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4433 (Heap-based buffer overflow in the kernel in Apple OS X before 10.10 ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4432 (fdesetup in Apple OS X before 10.10 does not properly display the ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4431 (Dock in Apple OS X before 10.10 does not properly manage the ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4430 (CoreStorage in Apple OS X before 10.10 retains a volume's encryption ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4429 RESERVED CVE-2014-4428 (Bluetooth in Apple OS X before 10.10 does not require encryption for ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4427 (App Sandbox in Apple OS X before 10.10 allows attackers to bypass a ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4426 (AFP File Server in Apple OS X before 10.10 allows remote attackers to ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4425 (CFPreferences in Apple OS X before 10.10 does not properly enforce the ...) - TODO: check + NOT-FOR-US: Apple OS X CVE-2014-4424 (SQL injection vulnerability in Wiki Server in CoreCollaboration in ...) NOT-FOR-US: Apple Mac OS X CVE-2014-4423 (The Accounts subsystem in Apple iOS before 8 allows attackers to ...) @@ -9228,7 +9228,7 @@ CVE-2014-4418 (IOKit in Apple iOS before 8 and Apple TV before 7 does not properly ...) NOT-FOR-US: Apple CVE-2014-4417 (Safari in Apple OS X before 10.10 allows remote attackers to cause a ...) - TODO: check + NOT-FOR-US: Apple Safari CVE-2014-4416 (An unspecified integrated graphics driver routine in the Intel ...) NOT-FOR-US: Apples Mac OS X CVE-2014-4415 (WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows ...) @@ -9280,7 +9280,7 @@ CVE-2014-4392 RESERVED CVE-2014-4391 (The Code Signing feature in Apple OS X before 10.10 does not properly ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2014-4390 (Bluetooth in Apple OS X before 10.9.5 does not properly validate API ...) NOT-FOR-US: Apple Mac OS X CVE-2014-4389 (Integer overflow in IOKit in Apple iOS before 8 and Apple TV before 7 ...) @@ -9360,7 +9360,7 @@ CVE-2014-4352 (Address Book in Apple iOS before 8 relies on the hardware UID for its ...) NOT-FOR-US: Apple CVE-2014-4351 (Buffer overflow in QuickTime in Apple OS X before 10.10 allows remote ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2014-4350 (Buffer overflow in QT Media Foundation in Apple OS X before 10.9.5 ...) NOT-FOR-US: QT Media Foundation in Apple OS X CVE-2014-4349 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits