Author: federico-guest
Date: 2012-08-02 21:57:10 +0000 (Thu, 02 Aug 2012)
New Revision: 19865
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-08-02 21:48:03 UTC (rev 19864)
+++ data/CVE/list 2012-08-02 21:57:10 UTC (rev 19865)
@@ -2270,7 +2270,7 @@
CVE-2012-3127 (Unspecified vulnerability in Oracle Sun Solaris 10 allows
remote ...)
NOT-FOR-US: Oracle Sun Solaris
CVE-2012-3126 (Unspecified vulnerability in the Solaris Cluster component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Solaris Cluster
CVE-2012-3125 (Unspecified vulnerability in Oracle Sun Solaris 8, 9, and 10
allows ...)
NOT-FOR-US: Oracle Sun Solaris
CVE-2012-3124 (Unspecified vulnerability in Oracle Sun Solaris 10 allows
remote ...)
@@ -2490,13 +2490,13 @@
CVE-2012-3019
RESERVED
CVE-2012-3018 (The lockout-recovery feature in the Security Configurator
component in ...)
- TODO: check
+ NOT-FOR-US: ICONICS GENESIS32
CVE-2012-3017 (Siemens SIMATIC S7-400 PN CPU devices with firmware 5.x allow
remote ...)
- TODO: check
+ NOT-FOR-US: Siemens SIMATIC
CVE-2012-3016 (Siemens SIMATIC S7-400 PN CPU devices with firmware 6 before
6.0.3 ...)
- TODO: check
+ NOT-FOR-US: Siemens SIMATIC
CVE-2012-3015 (Untrusted search path vulnerability in Siemens SIMATIC STEP7
before ...)
- TODO: check
+ NOT-FOR-US: Siemens SIMATIC
CVE-2012-3014
RESERVED
CVE-2012-3013
@@ -2510,13 +2510,13 @@
CVE-2012-3009
RESERVED
CVE-2012-3008 (Stack-based buffer overflow in OSIsoft PI OPC DA Interface
before ...)
- TODO: check
+ NOT-FOR-US: OSIsoft PI OPC DA Interface
CVE-2012-3007 (Stack-based buffer overflow in slssvc.exe before 58.x in
Invensys ...)
NOT-FOR-US: Not in Debian
CVE-2012-3006 (The Innominate mGuard Smart HW before HW-101130 and BD before
...)
NOT-FOR-US: Innominate mGuard Smart
CVE-2012-3005 (Untrusted search path vulnerability in Invensys Wonderware
InTouch ...)
- TODO: check
+ NOT-FOR-US: Wonderwar
CVE-2012-3004
RESERVED
CVE-2012-3003 (Open redirect vulnerability in an unspecified web application
in ...)
@@ -2618,11 +2618,11 @@
CVE-2012-2956
RESERVED
CVE-2012-2955 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: IBM Lotus Protector, IBM ISS Proventia Network Mail Security
CVE-2012-2954
RESERVED
CVE-2012-2953 (The management console in Symantec Web Gateway 5.0.x before
5.0.3.18 ...)
- TODO: check
+ NOT-FOR-US: Symantec Web Gateway
CVE-2012-2952 (SQL injection vulnerability in add_ons.php in Jaow 2.4.5 and
earlier ...)
NOT-FOR-US: Jaow
CVE-2012-2951 (SQL injection vulnerability in plog-rss.php in Plogger allows
remote ...)
@@ -3372,7 +3372,7 @@
CVE-2012-2648
RESERVED
CVE-2012-2647 (Yahoo! Toolbar 1.0.0.5 and earlier for Chrome and Safari allows
remote ...)
- TODO: check
+ NOT-FOR-US: Yahoo! Toolbar
CVE-2012-2646 (The Sleipnir Mobile application before 2.1.0 and Sleipnir
Mobile Black ...)
TODO: check
CVE-2012-2645 (The Yahoo! Japan Yahoo! Browser application 1.2.0 and earlier
for ...)
@@ -3413,9 +3413,9 @@
CVE-2012-2628
RESERVED
CVE-2012-2627 (d4d/uploader.php in the web console in Plixer Scrutinizer (aka
Dell ...)
- TODO: check
+ NOT-FOR-US: Plixer Scrutinizer
CVE-2012-2626 (cgi-bin/admin.cgi in the web console in Plixer Scrutinizer (aka
Dell ...)
- TODO: check
+ NOT-FOR-US: Plixer Scrutinizer
CVE-2012-2625
RESERVED
- xen <unfixed> (low)
@@ -3794,7 +3794,7 @@
CVE-2012-2443
RESERVED
CVE-2012-2442 (Buffer overflow in the Video Manager in Nokia PC Suite
7.1.180.64 and ...)
- TODO: check
+ NOT-FOR-US: Nokia PC Suite
CVE-2012-2441 (RuggedCom Rugged Operating System (ROS) before 3.3 has a
factory ...)
NOT-FOR-US: RuggedCom Rugged Operating System
CVE-2012-2440 (The default configuration of the TP-Link 8840T router enables
...)
@@ -4536,7 +4536,7 @@
CVE-2012-2203
RESERVED
CVE-2012-2202 (Directory traversal vulnerability in javatester_init.php in IBM
Lotus ...)
- TODO: check
+ NOT-FOR-US: IBM Lotus Protector, IBM ISS Proventia Network Mail
Security System
CVE-2012-2201
RESERVED
CVE-2012-2200 (The default configuration of sendmail in IBM AIX 6.1 and 7.1,
and VIOS ...)
@@ -4546,13 +4546,13 @@
CVE-2012-2198
RESERVED
CVE-2012-2197 (Stack-based buffer overflow in the Java Stored Procedure ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2012-2196 (IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8
through ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2012-2195
RESERVED
CVE-2012-2194 (Directory traversal vulnerability in the SQLJ.DB2_INSTALL_JAR
stored ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2012-2193
RESERVED
CVE-2012-2192 (The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS
...)
@@ -4614,7 +4614,7 @@
CVE-2012-2164
RESERVED
CVE-2012-2163 (IBM Scale Out Network Attached Storage (SONAS) 1.1 through
1.3.1 ...)
- TODO: check
+ NOT-FOR-US: IBM Scale Out Network Attached Storage
CVE-2012-2162 (The Web Server Plug-in in IBM WebSphere Application Server
(WAS) 8.0 ...)
NOT-FOR-US: WebSphere
CVE-2012-2161 (Cross-site scripting (XSS) vulnerability in deferredView.jsp in
IBM ...)
@@ -5618,37 +5618,37 @@
CVE-2012-1774 (Unspecified vulnerability in the Open URL feature in Gretech
GOM Media ...)
NOT-FOR-US: Gretech GOM Media Player
CVE-2012-1773 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1772 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1771 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1770 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1769 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1768 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1767 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1766 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1765 (Unspecified vulnerability in Oracle Sun Solaris 10 allows local
users ...)
- TODO: check
+ NOT-FOR-US: Oracle Sun Solaris 10
CVE-2012-1764 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2012-1763
RESERVED
CVE-2012-1762 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2012-1761 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2012-1760 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2012-1759 (Unspecified vulnerability in the Oracle AutoVue component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2012-1758 (Unspecified vulnerability in the Oracle AutoVue component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2012-1757 (Unspecified vulnerability in Oracle MySQL Server 5.5.23 and
earlier ...)
- mysql-5.1 <not-affected> (Only affects 5.5)
- mysql-5.5 5.5.24+dfsg-1 (bug #682210)
@@ -5658,43 +5658,43 @@
CVE-2012-1755
RESERVED
CVE-2012-1754 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2012-1753 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2012-1752 (Unspecified vulnerability in Oracle Sun Solaris 11 allows local
users ...)
- TODO: check
+ NOT-FOR-US: Oracle Sun Solaris 11
CVE-2012-1751
RESERVED
CVE-2012-1750 (Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and
11 ...)
- TODO: check
+ NOT-FOR-US: Oracle Sun Solaris 8, 9, 10, and 11
CVE-2012-1749 (Unspecified vulnerability in the Oracle MapViewer component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1748 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products 9.1
CVE-2012-1747 (Unspecified vulnerability in the Network Layer component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2012-1746 (Unspecified vulnerability in the Network Layer component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2012-1745 (Unspecified vulnerability in the Network Layer component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2012-1744 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1743 (Unspecified vulnerability in the Oracle Clinical Remote Data
Capture ...)
- TODO: check
+ NOT-FOR-US: Oracle Industry Applications
CVE-2012-1742 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2012-1741 (Unspecified vulnerability in the Enterprise Manager for Fusion
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1740 (Unspecified vulnerability in the Oracle Application Express
Listener ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Express Listener
CVE-2012-1739 (Unspecified vulnerability in the Oracle E-Business Intelligence
...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2012-1738 (Unspecified vulnerability in the Oracle iPlanet Web Server
component ...)
- TODO: check
+ NOT-FOR-US: Oracle Sun Products Suite, iPlanet Web Server
CVE-2012-1737 (Unspecified vulnerability in the Enterprise Manager for Oracle
...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2012-1736 (Unspecified vulnerability in the Oracle MapViewer component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2012-1735 (Unspecified vulnerability in Oracle MySQL Server 5.5.23 and
earlier ...)
- mysql-5.1 <not-affected> (Only affects 5.5)
- mysql-5.5 5.5.24+dfsg-1 (bug #682210)
@@ -5702,19 +5702,19 @@
- mysql-5.1 <removed> (bug #682212)
- mysql-5.5 5.5.24+dfsg-1 (bug #682210)
CVE-2012-1733 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2012-1732 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2012-1731 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2
allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2012-1730 (Unspecified vulnerability in the Oracle Application Object
Library ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2012-1729 (Unspecified vulnerability in the Hyperion BI+ component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Hyperion
CVE-2012-1728 (Unspecified vulnerability in the Oracle Siebel CRM 8.1.1 and
8.2.2 ...)
- TODO: check
+ NOT-FOR-US: Oracle Siebel CRM
CVE-2012-1727 (Unspecified vulnerability in the Oracle Application Object
Library ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2012-1726 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
- openjdk-7 7~u3-2.1.1-1 (bug #677486)
CVE-2012-1725 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
@@ -5755,7 +5755,7 @@
- openjdk-6 6b24-1.11.3-1 (bug #677487)
- openjdk-7 7~u3-2.1.1-1 (bug #677486)
CVE-2012-1715 (Unspecified vulnerability in the Oracle Application Object
Library ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2012-1714
RESERVED
CVE-2012-1713 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
@@ -5823,7 +5823,7 @@
- mysql-5.1 5.1.62-1 (bug #670636)
- mysql-5.5 5.5.23-1
CVE-2012-1687 (Unspecified vulnerability in Oracle Solaris 10 and 11 allows
local ...)
- TODO: check
+ NOT-FOR-US: Oracle Solaris 10 and 11
CVE-2012-1686
RESERVED
CVE-2012-1685
@@ -8208,7 +8208,7 @@
CVE-2012-0724 (Adobe Flash Player before 11.2.202.229 in Google Chrome before
...)
NOT-FOR-US: Adobe Flash Player
CVE-2012-0723 (The kernel in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.1.4-FP-25
SP-02, ...)
- TODO: check
+ NOT-FOR-US: IBM AIX, VIOS
CVE-2012-0722
RESERVED
CVE-2012-0721
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
