Author: carnil
Date: 2015-10-20 19:37:26 +0000 (Tue, 20 Oct 2015)
New Revision: 37203
Modified:
data/CVE/list
Log:
More NFU processed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-20 19:30:22 UTC (rev 37202)
+++ data/CVE/list 2015-10-20 19:37:26 UTC (rev 37203)
@@ -249,9 +249,9 @@
CVE-2015-7762
RESERVED
CVE-2015-7761 (Mail in Apple OS X before 10.11 does not properly recognize
user ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7760 (libxpc in launchd in Apple OS X before 10.11 does not restrict
the ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-7759
RESERVED
CVE-2015-7757
@@ -4185,11 +4185,11 @@
CVE-2015-6040
RESERVED
CVE-2015-6039 (Cross-site scripting (XSS) vulnerability in Microsoft
SharePoint ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2015-6038
RESERVED
CVE-2015-6037 (Cross-site scripting (XSS) vulnerability in Microsoft Excel
Services ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2015-6036
RESERVED
CVE-2015-6035
@@ -4614,15 +4614,15 @@
CVE-2015-5918 (GasGauge in Apple watchOS before 2 allows local users to gain
...)
TODO: check
CVE-2015-5917 (The glob implementation in tnftpd (formerly lukemftpd), as used
in ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5916 (The Apple Pay component in Apple iOS before 9 allows remote
terminals ...)
NOT-FOR-US: Apple
CVE-2015-5915 (Apple OS X before 10.11 does not ensure that the keychain's
lock state ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5914 (The EFI component in Apple OS X before 10.11 allows physically
...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5913 (Heimdal, as used in Apple OS X before 10.11, allows remote
attackers ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5912 (The CFNetwork FTPProtocol component in Apple iOS before 9
allows ...)
NOT-FOR-US: Apple
CVE-2015-5911 (Multiple unspecified vulnerabilities in Twisted in Wiki Server
in ...)
@@ -4644,45 +4644,45 @@
CVE-2015-5903 (The kernel in Apple iOS before 9 allows local users to gain
privileges ...)
NOT-FOR-US: Apple
CVE-2015-5902 (The debugging feature in the kernel in Apple OS X before 10.11
...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5901 (The Secure Empty Trash feature in Finder in Apple OS X before
10.11 ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5900 (The protected range register in the EFI component in Apple OS X
before ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5899 (libpthread in the kernel in Apple iOS before 9 allows local
users to ...)
NOT-FOR-US: Apple
CVE-2015-5898 (CFNetwork in Apple iOS before 9 relies on the hardware UID for
its ...)
NOT-FOR-US: Apple
CVE-2015-5897 (The Address Book framework in Apple OS X before 10.11 allows
local ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5896 (The kernel in Apple iOS before 9 allows local users to gain
privileges ...)
NOT-FOR-US: Apple
CVE-2015-5895 (Multiple unspecified vulnerabilities in SQLite before 3.8.10.2,
as ...)
NOT-FOR-US: Apple
CVE-2015-5894 (The X.509 certificate-trust implementation in Apple OS X before
10.11 ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5893 (SMBClient in SMB in Apple OS X before 10.11 allows local users
to ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5892 (Siri in Apple iOS before 9 allows physically proximate
attackers to ...)
NOT-FOR-US: Apple
CVE-2015-5891 (The SMB implementation in the kernel in Apple OS X before 10.11
allows ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5890 (IOGraphics in Apple OS X before 10.11 allows local users to
gain ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5889 (rsh in the remote_cmds component in Apple OS X before 10.11
allows ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5888 (The Install Framework Legacy component in Apple OS X before
10.11 ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5887 (The TLS Handshake Protocol implementation in Secure Transport
in Apple ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5886
RESERVED
CVE-2015-5885 (The CFNetwork Cookies component in Apple iOS before 9 allows
remote ...)
NOT-FOR-US: Apple
CVE-2015-5884 (The Mail Drop feature in Mail in Apple OS X before 10.11
mishandles ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5883 (The bidirectional text-display and text-selection
implementations in ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5882 (The processor_set_tasks API implementation in Apple iOS before
9 ...)
NOT-FOR-US: Apple
CVE-2015-5881
@@ -4692,23 +4692,23 @@
CVE-2015-5879 (XNU in the kernel in Apple iOS before 9 does not properly
validate the ...)
NOT-FOR-US: Apple
CVE-2015-5878 (Notes in Apple OS X before 10.11 misparses links, which allows
local ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5877 (The Intel Graphics Driver component in Apple OS X before 10.11
allows ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5876 (dyld in Dev Tools in Apple iOS before 9 allows attackers to
execute ...)
NOT-FOR-US: Apple
CVE-2015-5875 (Cross-site scripting (XSS) vulnerability in Notes in Apple OS X
before ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5874 (CoreText in Apple iOS before 9 and iTunes before 12.3 allows
remote ...)
NOT-FOR-US: Apple
CVE-2015-5873 (IOGraphics in Apple OS X before 10.11 allows local users to
gain ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5872 (IOGraphics in Apple OS X before 10.11 allows local users to
gain ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5871 (IOGraphics in Apple OS X before 10.11 allows local users to
gain ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5870 (The debugging interfaces in the kernel in Apple OS X before
10.11 ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5869 (The Neighbor Discovery (ND) protocol implementation in the IPv6
stack ...)
NOT-FOR-US: Apple
CVE-2015-5868 (The kernel in Apple iOS before 9 allows local users to gain
privileges ...)
@@ -4716,11 +4716,11 @@
CVE-2015-5867 (IOHIDFamily in Apple iOS before 9 allows attackers to execute
...)
NOT-FOR-US: Apple
CVE-2015-5866 (IOHIDFamily in Apple OS X before 10.11 allows attackers to
execute ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5865 (IOGraphics in Apple OS X before 10.11 allows attackers to
obtain ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5864 (IOAudioFamily in Apple OS X before 10.11 allows local users to
obtain ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5863 (IOStorageFamily in Apple iOS before 9 does not properly
initialize an ...)
NOT-FOR-US: Apple
CVE-2015-5862 (The Audio component in Apple iOS before 9 allows remote
attackers to ...)
@@ -4740,9 +4740,9 @@
CVE-2015-5855 (Apple iOS before 9 allows attackers to discover the e-mail
address of ...)
NOT-FOR-US: Apple
CVE-2015-5854 (The backup implementation in Time Machine in Apple OS X before
10.11 ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5853 (AirScan in Apple OS X before 10.11 allows man-in-the-middle
attackers ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5852
RESERVED
CVE-2015-5851 (The convenience initializer in the Multipeer Connectivity
component in ...)
@@ -4750,7 +4750,7 @@
CVE-2015-5850 (AppleKeyStore in Apple iOS before 9 allows physically proximate
...)
NOT-FOR-US: Apple
CVE-2015-5849 (The filtering implementation in AppleEvents in Apple OS X
before 10.11 ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5848 (IOAcceleratorFamily in Apple iOS before 9 allows local users to
gain ...)
NOT-FOR-US: Apple
CVE-2015-5847 (The Disk Images component in Apple iOS before 9 allows local
users to ...)
@@ -4776,19 +4776,19 @@
CVE-2015-5837 (PluginKit in Apple iOS before 9 allows attackers to bypass an
intended ...)
NOT-FOR-US: Apple
CVE-2015-5836 (Apple Online Store Kit in Apple OS X before 10.11 improperly
validates ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5835 (Apple iOS before 9 allows attackers to obtain sensitive
information ...)
NOT-FOR-US: Apple
CVE-2015-5834 (IOAcceleratorFamily in Apple iOS before 9 allows attackers to
obtain ...)
NOT-FOR-US: Apple
CVE-2015-5833 (The Login Window component in Apple OS X before 10.11 does not
ensure ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5832 (The iTunes Store component in Apple iOS before 9 does not
properly ...)
NOT-FOR-US: Apple
CVE-2015-5831 (NetworkExtension in the kernel in Apple iOS before 9 does not
properly ...)
NOT-FOR-US: Apple
CVE-2015-5830 (The Intel Graphics Driver component in Apple OS X before 10.11
allows ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-5829 (Data Detectors Engine in Apple iOS before 9 allows remote
attackers to ...)
NOT-FOR-US: Apple
CVE-2015-5828 (The API in the WebKit Plug-ins component in Apple Safari before
9 does ...)
@@ -10395,7 +10395,7 @@
CVE-2015-3786 (The Bluetooth subsystem in Apple OS X before 10.10.5 does not
properly ...)
NOT-FOR-US: Apple OS X
CVE-2015-3785 (The Telephony component in Apple OS X before 10.11, when the
...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2015-3784 (Office Viewer in Apple iOS before 8.4.1 and OS X before 10.10.5
allows ...)
NOT-FOR-US: Apple OS X
CVE-2015-3783 (SceneKit in Apple OS X before 10.10.5 allows remote attackers
to ...)
@@ -14241,13 +14241,13 @@
CVE-2015-2560
RESERVED
CVE-2015-2558 (Use-after-free vulnerability in Microsoft Excel 2007 SP3, Excel
2010 ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2015-2557 (Buffer overflow in Microsoft Visio 2007 SP3 and 2010 SP2 allows
remote ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2015-2556 (The InfoPath Forms Services component in Microsoft SharePoint
Server ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2015-2555 (Use-after-free vulnerability in Microsoft Excel 2010 SP2, Excel
2013 ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2015-2554 (The kernel in Microsoft Windows 8, Windows 8.1, Windows Server
2012 ...)
NOT-FOR-US: Microsoft Windows
CVE-2015-2553 (The kernel in Microsoft Windows Vista SP2, Windows Server 2008
SP2 and ...)
@@ -30526,9 +30526,9 @@
CVE-2014-6451 (J-Web in Juniper vSRX virtual firewalls with Junos OS before
...)
TODO: check
CVE-2014-6450 (Juniper Junos OS before 11.4R12-S4, 12.1X44 before 12.1X44-D41,
...)
- TODO: check
+ NOT-FOR-US: Juniper Junos OS
CVE-2014-6449 (Juniper Junos OS before 12.1X44-D50, 12.1X46 before
12.1X46-D35, ...)
- TODO: check
+ NOT-FOR-US: Juniper Junos OS
CVE-2014-6448
RESERVED
CVE-2014-6447
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
