[Secure-testing-commits] r18145 - data/CVE

Fri, 13 Jan 2012 13:01:14 -0800 

Author: fw
Date: 2012-01-13 21:01:05 +0000 (Fri, 13 Jan 2012)
New Revision: 18145

Modified:
   data/CVE/list
Log:
CVE-2011-2528: plone3
CVE-2011-2385: otrs2
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2012-01-13 20:05:10 UTC (rev 18144)
+++ data/CVE/list       2012-01-13 21:01:05 UTC (rev 18145)
@@ -6298,7 +6298,7 @@
        [squeeze] - openssl <not-affected> (only affects 1.0.0 through 1.0.0d)
        [lenny] - openssl <not-affected> (only affects 1.0.0 through 1.0.0d)
 CVE-2011-3206 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
-       TODO: check
+       NOT-FOR-US: RHQ
 CVE-2011-3205 (Buffer overflow in the gopherToHTML function in gopher.cc in 
the ...)
        {DSA-2304-1}
        - squid3 3.1.15-1 (low; bug #639755)
@@ -8030,7 +8030,7 @@
 CVE-2011-2654 (The RPC implementation in the server in Novell Cloud Manager 
1.1.2 ...)
        NOT-FOR-US: Novell Cloud Manager
 CVE-2011-2653 (Directory traversal vulnerability in the rtrlet component in 
Novell ...)
-       TODO: check
+       NOT-FOR-US: Novell ZENworks
 CVE-2011-2652 (Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, 
as ...)
        NOT-FOR-US: Kiwi, SUSE Studio
 CVE-2011-2651 (Unspecified vulnerability in the file browser in Kiwi before 
3.74.2, ...)
@@ -8326,7 +8326,7 @@
        {DSA-2276-2 DSA-2276-1}
        - asterisk 1:1.8.4.3-1 (bug #631446)
 CVE-2011-2528 (Unspecified vulnerability in (1) Zope 2.12.x before 2.12.19 and 
2.13.x ...)
-       TODO: check
+       - plone3 <removed>
 CVE-2011-2527
        RESERVED
        {DSA-2282-1}
@@ -8681,7 +8681,8 @@
 CVE-2011-2386 (VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site 
Survey ...)
        NOT-FOR-US: VisiWave Site Survey
 CVE-2011-2385 (The iPhoneHandle package 0.9.x before 0.9.7 and 1.0.x before 
1.0.3 in ...)
-       TODO: check
+       - otrs2 3.0.9+dfsg1-1
+       [lenny] - otrs2 <not-affected> (does not include iPhoneHandle package)
 CVE-2011-2384
        RESERVED
 CVE-2011-2381 (CRLF injection vulnerability in Bugzilla 2.17.1 through 2.22.7, 
3.0.x ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to