Author: federico-guest
Date: 2011-04-23 12:08:45 +0000 (Sat, 23 Apr 2011)
New Revision: 16572
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-04-22 21:15:13 UTC (rev 16571)
+++ data/CVE/list 2011-04-23 12:08:45 UTC (rev 16572)
@@ -73,7 +73,7 @@
CVE-2011-1790
RESERVED
CVE-2010-4789 (Use-after-free vulnerability in the proxy-server implementation
in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM Tivoli Directory Server
CVE-2010-4788 (IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.62 (aka ...)
NOT-FOR-US: Tivoli
CVE-2010-4787 (IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.63 (aka ...)
@@ -243,7 +243,7 @@
CVE-2011-1718
RESERVED
CVE-2011-1716 (Multiple cross-site scripting (XSS) vulnerabilities in the Web
UI in ...)
- TODO: check
+ NOT-FOR-US: Xymon
CVE-2009-5071 (Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has
unknown ...)
TODO: check
CVE-2011-XXXX
@@ -336,7 +336,7 @@
[squeeze] - vlc 1.1.3-1squeeze5
NOTE: CVE id requested
CVE-2011-1681 (vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka
...)
- TODO: check
+ NOT-FOR-US: VMware Open Virtual Machine Tools
CVE-2011-1680 (ncpmount in ncpfs 2.2.6 and earlier does not remove the
/etc/mtab~ ...)
TODO: check
CVE-2011-1679 (ncpfs 2.2.6 and earlier attempts to use (1) ncpmount to append
to the ...)
@@ -1077,9 +1077,9 @@
CVE-2011-1423
RESERVED
CVE-2011-1422 (Cross-site scripting (XSS) vulnerability in an unspecified
Shockwave ...)
- TODO: check
+ NOT-FOR-US: EMC RSA Adaptive Authentication On-Premise
CVE-2011-1421 (EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5,
when the ...)
- TODO: check
+ NOT-FOR-US: EMC NetWorker
CVE-2011-1420 (EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris
SPARC ...)
NOT-FOR-US: EMC Data Protection Advisor Collector
CVE-2011-1419 (Apache Tomcat 7.x before 7.0.11, when web.xml has no security
...)
@@ -1545,7 +1545,7 @@
CVE-2011-1207
RESERVED
CVE-2011-1206 (Stack-based buffer overflow in the server process in
ibmslapd.exe in ...)
- TODO: check
+ NOT-FOR-US: IBM Tivoli Directory Server
CVE-2011-1205 (Multiple buffer overflows in unspecified COM objects in
Rational ...)
NOT-FOR-US: IBM Rational ClearCase, ClearQuest
CVE-2011-1204 (Google Chrome before 10.0.648.127 does not properly handle
attributes, ...)
@@ -2670,31 +2670,31 @@
CVE-2011-0862
RESERVED
CVE-2011-0861 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS
9.0 ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0860 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS
9.0 ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0859 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS
9.0 Tax ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0858 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS
9.0 ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0857 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS
9.0 ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0856 (Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.49
GA ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0855 (Unspecified vulnerability in the InForm component in Oracle
Industry ...)
- TODO: check
+ NOT-FOR-US: Oracle Industry Applications
CVE-2011-0854 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS
9.1 ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0853 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS
9.0 ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0852
RESERVED
CVE-2011-0851 (Unspecified vulnerability in Oracle PeopleSoft Enterprise ELS
9.0 ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0850 (Unspecified vulnerability in Oracle PeopleSoft Enterprise CRM
8.9 ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0849 (Unspecified vulnerability in Oracle Java Dynamic Management Kit
5.1 ...)
- TODO: check
+ NOT-FOR-US: Oracle Java Dynamic Management Kit
CVE-2011-0848
RESERVED
CVE-2011-0847 (Unspecified vulnerability in the OpenSSO Enterprise and Sun
Java ...)
@@ -2710,23 +2710,23 @@
CVE-2011-0842
RESERVED
CVE-2011-0841 (Unspecified vulnerability in Oracle Solaris 11 Express allows
remote ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0840 (Unspecified vulnerability in Oracle PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise PeopleTools
CVE-2011-0839 (Unspecified vulnerability in Oracle Solaris 9, 10, and 11
Express ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0838
RESERVED
CVE-2011-0837 (Unspecified vulnerability in the Agile Technology Platform
component ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2011-0836 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne
Tools 8.9 ...)
- TODO: check
+ NOT-FOR-US: Oracle JD Edwards EnterpriseOne
CVE-2011-0835
RESERVED
CVE-2011-0834 (Unspecified vulnerability in the Siebel CRM Core component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2011-0833 (Unspecified vulnerability in the Siebel CRM Core component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2011-0832
RESERVED
CVE-2011-0831
@@ -2734,29 +2734,29 @@
CVE-2011-0830
RESERVED
CVE-2011-0829 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0828 (Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8
Bundle ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2011-0827 (Unspecified vulnerability in the PeopleSoft Enterprise
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft
CVE-2011-0826 (Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8
Bundle ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft
CVE-2011-0825 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne
Tools 8.9 ...)
- TODO: check
+ NOT-FOR-US: Oracle JD Edwards EnterpriseOne
CVE-2011-0824 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne
Tools 8.9 ...)
- TODO: check
+ NOT-FOR-US: Oracle JD Edwards EnterpriseOne
CVE-2011-0823 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne
Tools 8.9 ...)
- TODO: check
+ NOT-FOR-US: Oracle JD Edwards EnterpriseOne
CVE-2011-0822
RESERVED
CVE-2011-0821 (Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows
local ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0820 (Unspecified vulnerability in Oracle Solaris 10, and 11 Express
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0819 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne
Tools 8.9 ...)
- TODO: check
+ NOT-FOR-US: Oracle JD Edwards EnterpriseOne
CVE-2011-0818 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne
Tools 8.9 ...)
- TODO: check
+ NOT-FOR-US: Oracle JD Edwards EnterpriseOne
CVE-2011-0817
RESERVED
CVE-2011-0816
@@ -2766,63 +2766,63 @@
CVE-2011-0814
RESERVED
CVE-2011-0813 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
Express ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0812 (Unspecified vulnerability in the Solaris component in Oracle
Solaris ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0811
RESERVED
CVE-2011-0810 (Unspecified vulnerability Oracle JD Edwards EnterpriseOne Tools
8.9 GA ...)
- TODO: check
+ NOT-FOR-US: Oracle JD Edwards EnterpriseOne
CVE-2011-0809 (Unspecified vulnerability in the Web ADI component in Oracle
...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2011-0808 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2011-0807 (Unspecified vulnerability in Oracle Sun GlassFish Enterprise
Server ...)
TODO: check
CVE-2011-0806 (Unspecified vulnerability in the Network Foundation component
in ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2011-0805 (Unspecified vulnerability in the UIX component in Oracle
Database ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2011-0804 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2011-0803 (Unspecified vulnerability in the JD Edwards EnterpriseOne Tools
...)
- TODO: check
+ NOT-FOR-US: Oracle JD Edwards Products
CVE-2011-0802
RESERVED
CVE-2011-0801 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0800 (Unspecified vulnerability in the Solaris component in Oracle
Solaris ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0799 (Unspecified vulnerability in the Oracle Warehouse Builder
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2011-0798 (Unspecified vulnerability in the Portal component in Oracle
Fusion ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2011-0797 (Unspecified vulnerability in the Applications Install component
in ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2011-0796 (Unspecified vulnerability in the Applications Install component
in ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2011-0795 (Unspecified vulnerability in the Single Sign On component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2011-0794 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2011-0793 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2011-0792 (Unspecified vulnerability in the Oracle Warehouse Builder
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2011-0791 (Unspecified vulnerability in the Application Object Library
component ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2011-0790 (Unspecified vulnerability in Oracle Solaris 9 and 10 allows
local ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0789 (Unspecified vulnerability in the Oracle HTTP Server component
in ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2011-0788
RESERVED
CVE-2011-0787 (Unspecified vulnerability in the Application Service Level
Management ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2011-0786
RESERVED
CVE-2011-0785 (Unspecified vulnerability in the Oracle Help component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2011-0784 (Race condition in Google Chrome before 9.0.597.84 allows remote
...)
- chromium-browser 9.0.597.84~r72991-1
[squeeze] - chromium-browser <not-affected>
@@ -3922,7 +3922,7 @@
NOTE: maintainer is aware
NOTE: http://www.isc.org/software/dhcp/advisories/cve-2011-0413
CVE-2011-0412 (Oracle Solaris 8, 9, and 10 stores back-out patch files
(undo.Z) ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris
CVE-2011-0411 (The STARTTLS implementation in Postfix 2.4.x before 2.4.16,
2.5.x ...)
TODO: lots of various other packages potentially affected, need to
check them, see http://www.kb.cert.org/vuls/id/555316
- postfix 2.8.0-1
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
