Author: thijs
Date: 2012-12-07 13:12:26 +0000 (Fri, 07 Dec 2012)
New Revision: 20623
Modified:
data/CVE/list
Log:
collabtive ancient issues
mahara split issue
nfu's
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-12-07 07:21:53 UTC (rev 20622)
+++ data/CVE/list 2012-12-07 13:12:26 UTC (rev 20623)
@@ -3,9 +3,9 @@
CVE-2012-6068
RESERVED
CVE-2012-6067 (freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers
to ...)
- TODO: check
+ NOT-FOR-US: freeFTPd
CVE-2012-6066 (freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers
to ...)
- TODO: check
+ NOT-FOR-US: freeFTPd
CVE-2012-6065 (The OM Maximenu module 6.x-1.43 and earlier for Drupal, when
the ...)
NOT-FOR-US: Drupal plugin
CVE-2012-6064 (Directory traversal vulnerability in ...)
@@ -266,13 +266,13 @@
CVE-2012-6047 (Cross-site request forgery (CSRF) vulnerability in X7 Chat
2.0.5.1 and ...)
NOT-FOR-US: X7 Chat 2.0.5.1
CVE-2012-6046 (Static code injection vulnerability in admin/banners.php in PHP
Enter ...)
- TODO: check
+ NOT-FOR-US: PHP Enter
CVE-2012-6045 (Cross-site scripting (XSS) vulnerability in gb/user/index.php
in Ramui ...)
NOT-FOR-US: Ramui Forum
CVE-2012-6044 (M-Player 0.4 allows remote attackers to cause a denial of
service ...)
NOT-FOR-US: M-Player (different from mplayer in the archive)
CVE-2012-6043 (Cross-site scripting (XSS) vulnerability in downloads.php in
...)
- TODO: check
+ NOT-FOR-US: phpFusion
CVE-2012-6042 (GPSMapEdit 1.1.73.2 allows user-assisted remote attackers to
cause a ...)
NOT-FOR-US: GPSMapEdit
CVE-2012-6041 (Double free vulnerability in GreenBrowser before 6.0.1002, when
the ...)
@@ -284,11 +284,11 @@
CVE-2012-6038 (admin/core/admin_func.php in razorCMS before 1.2.1 does not
properly ...)
NOT-FOR-US: razorCMS
CVE-2010-5286 (Directory traversal vulnerability in Jstore (com_jstore)
component for ...)
- TODO: check
+ NOT-FOR-US: Joomla jstore
CVE-2010-5285 (Cross-site request forgery (CSRF) vulnerability in admin.php in
...)
- TODO: check
+ - collabtive <unfixed> (bug #695348)
CVE-2010-5284 (Multiple cross-site scripting (XSS) vulnerabilities in
Collabtive ...)
- TODO: check
+ - collabtive <unfixed> (bug #695348)
CVE-2010-5283 (Cross-site request forgery (CSRF) vulnerability in OpenText ECM
...)
NOT-FOR-US: OpenText ECM
CVE-2010-5282 (Multiple cross-site scripting (XSS) vulnerabilities in OpenText
ECM ...)
@@ -296,9 +296,9 @@
CVE-2010-5281 (Directory traversal vulnerability in ibrowser.php in the
CMScout 2.09 ...)
NOT-FOR-US: CMScout IBrowser TinyMCE Plugin
CVE-2010-5280 (Directory traversal vulnerability in the Community Builder
Enhanced ...)
- TODO: check
+ NOT-FOR-US: CBE for Joomla
CVE-2012-6037 (Multiple cross-site scripting (XSS) vulnerabilities in Mahara
1.4.x ...)
- TODO: check
+ - mahara 1.5.1-3
CVE-2012-6036 (The (1) memc_save_get_next_page, (2) tmemc_restore_put_page and
(3) ...)
- xen <unfixed> (bug #686764)
[squeeze] - xen <no-dsa> (Experimental/unsupported feature)
@@ -434,7 +434,7 @@
CVE-2012-5976
RESERVED
CVE-2012-5975 (The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server
6.0.4 ...)
- TODO: check
+ NOT-FOR-US: Tectia SSH
CVE-2012-5974
RESERVED
CVE-2012-5973
@@ -1418,7 +1418,7 @@
CVE-2012-5570
RESERVED
CVE-2012-5569 (Multiple cross-site scripting (XSS) vulnerabilities in the
Basic ...)
- TODO: check
+ NOT-FOR-US: Drupal Webmail module
CVE-2012-5568 (Apache Tomcat through 7.0.x allows remote attackers to cause a
denial ...)
- tomcat6 <unfixed> (low)
[squeeze] - tomcat6 <no-dsa> (Minor issue)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
