Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5c94800b by Moritz Muehlenhoff at 2020-02-10T17:54:01+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -273606,13 +273606,13 @@ CVE-2013-3640 (Cross-site scripting (XSS)
vulnerability in the Instant Web Publi
CVE-2013-3639 (Multiple cross-site scripting (XSS) vulnerabilities in Xaraya
2.4.0-b1 ...)
NOT-FOR-US: Xaraya
CVE-2013-3638 (SQL injection vulnerability in Boonex Dolphin before 7.1.3
allows remo ...)
- TODO: check
+ NOT-FOR-US: Boonex Dolphin
CVE-2013-3637 (ProjectPier 0.8.8 does not use the Secure flag for cookies ...)
- TODO: check
+ NOT-FOR-US: ProjectPier
CVE-2013-3636 (ProjectPier 0.8.8 has a Remote Information Disclosure Weakness
because ...)
- TODO: check
+ NOT-FOR-US: ProjectPier
CVE-2013-3635 (ProjectPier 0.8.8 has stored XSS ...)
- TODO: check
+ NOT-FOR-US: ProjectPier
CVE-2013-3634 (A vulnerability has been identified in SCALANCE X-200 switch
family (i ...)
NOT-FOR-US: Siemens switches
CVE-2013-3633 (A vulnerability has been identified in SCALANCE X-200 switch
family (i ...)
@@ -283885,13 +283885,13 @@ CVE-2012-6311
CVE-2012-6310
RESERVED
CVE-2012-6309 (A vulnerability exists in Arctic Torrent 1.4 via unspecified
vectors i ...)
- TODO: check
+ NOT-FOR-US: Arctic Torrent
CVE-2012-6308
RESERVED
CVE-2012-6307 (A vulnerability exists in JPEGsnoop 1.5.2 due to an unspecified
issue ...)
- TODO: check
+ NOT-FOR-US: JPEGsnoop
CVE-2012-6306 (A vulnerability exists in HCView (aka Hardcoreview) 1.4 due to
a write ...)
- TODO: check
+ NOT-FOR-US: HCView (aka Hardcoreview)
CVE-2012-6305
RESERVED
CVE-2012-6304
@@ -286099,7 +286099,7 @@ CVE-2012-5572 (CRLF injection vulnerability in the
cookie method (lib/Dancer/Coo
CVE-2012-5571 (OpenStack Keystone Essex (2012.1) and Folsom (2012.2) does not
properl ...)
- keystone 2012.1.1-11 (bug #694433)
CVE-2012-5570 (The Basic webmail module 6.x-1.x before 6.x-1.2 for Drupal
allows remo ...)
- TODO: check
+ NOT-FOR-US: Drupal addon
CVE-2012-5569 (Multiple cross-site scripting (XSS) vulnerabilities in the
Basic webma ...)
NOT-FOR-US: Drupal Webmail module
CVE-2012-5568 (Apache Tomcat through 7.0.x allows remote attackers to cause a
denial ...)
@@ -314905,7 +314905,7 @@ CVE-2011-0222 (WebKit, as used in Apple Safari before
5.0.6, allows remote attac
CVE-2011-0221 (WebKit, as used in Apple Safari before 5.0.6, allows remote
attackers ...)
NOT-FOR-US: Webkit / if anything of this affects Chromium, the Chrome
sec team will know and fix
CVE-2011-0220 (Apple Bonjour before 2011 allows a crash via a crafted
multicast DNS p ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2011-0219 (Apple Safari before 5.0.6 allows remote attackers to bypass the
Same O ...)
NOT-FOR-US: Webkit / if anything of this affects Chromium, the Chrome
sec team will know and fix
CVE-2011-0218 (WebKit, as used in Apple Safari before 5.0.6, allows remote
attackers ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c94800b95c14e49248615ee18c6b35ef23671df
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c94800b95c14e49248615ee18c6b35ef23671df
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
