NFUs

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@19272 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: Federico Ceratto <federico.ceratto@gmail.com> 2012-05-19 10:41:23 +0000
committer: Federico Ceratto <federico.ceratto@gmail.com> 2012-05-19 10:41:23 +0000
commit: 0c7227e5d4c22c99dd81e4c122e0ba5a53d67046 (patch)
tree: 18924e72fded8c91e1819a8688634074429fea66
parent: 138a26909474326adda8dcbc06ac9c62006c1926 (diff)
1 files changed, 52 insertions, 52 deletions
diff --git a/data/CVE/list b/data/CVE/list
index a184214eb2..7042071ab7 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -299,9 +299,9 @@ CVE-2012-2614
 CVE-2012-2613
 	RESERVED
 CVE-2012-2612 (The DiagTraceHex function in disp+work.exe 7010.29.15.58313 and ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver
 CVE-2012-2611 (The DiagTraceR3Info function in the Dialog processor in disp+work.exe ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver
 CVE-2012-2610
 	RESERVED
 CVE-2012-2609
@@ -495,13 +495,13 @@ CVE-2012-2516
 CVE-2012-2515
 	RESERVED
 CVE-2012-2514 (The DiagiEventSource function in disp+work.exe 7010.29.15.58313 and ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver
 CVE-2012-2513 (The Diaginput function in disp+work.exe 7010.29.15.58313 and ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver
 CVE-2012-2512 (The DiagTraceStreamI function in disp+work.exe 7010.29.15.58313 and ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver
 CVE-2012-2511 (The DiagTraceAtoms function in disp+work.exe 7010.29.15.58313 and ...)
-	TODO: check
+	NOT-FOR-US: SAP NetWeaver
 CVE-2012-2510
 	RESERVED
 CVE-2012-2509
@@ -1183,9 +1183,9 @@ CVE-2012-2279
 CVE-2012-2278
 	RESERVED
 CVE-2012-2277 (The IRM Server in EMC Documentum Information Rights Management 4.x ...)
-	TODO: check
+	NOT-FOR-US: EMC Documentum Information Rights Management
 CVE-2012-2276 (The IRM Server in EMC Documentum Information Rights Management 4.x ...)
-	TODO: check
+	NOT-FOR-US: EMC Documentum Information Rights Management
 CVE-2012-2275
 	RESERVED
 CVE-2012-2274
@@ -2304,7 +2304,7 @@ CVE-2012-1806 (The ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, ..
 CVE-2012-1805 (Buffer overflow in the ECOM Ethernet module in Koyo H0-ECOM, ...)
 	NOT-FOR-US: Koyo ECOM
 CVE-2012-1804 (The OPC server in Progea Movicon before 11.3 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Progea Movicon
 CVE-2012-1803 (RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a ...)
 	NOT-FOR-US: RuggedCom Rugged Operating System
 CVE-2012-1802 (Buffer overflow in the embedded web server on the Siemens Scalance X ...)
@@ -3551,9 +3551,9 @@ CVE-2012-1249
 CVE-2012-1248 (app/config/core.php in baserCMS 1.6.15 and earlier does not properly ...)
 	TODO: check
 CVE-2012-1247 (Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and ...)
-	TODO: check
+	NOT-FOR-US: KENT-WEB WEB MART
 CVE-2012-1246 (Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and ...)
-	TODO: check
+	NOT-FOR-US: KENT-WEB WEB MART
 CVE-2012-1245 (Cross-site scripting (XSS) vulnerability in the cleanup_urls function ...)
 	NOT-FOR-US: OSQA
 CVE-2012-1244 (The NTT DOCOMO sp mode mail application 5400 and earlier for Android ...)
@@ -5082,51 +5082,51 @@ CVE-2012-0673
 CVE-2012-0672 (WebKit in Apple iOS before 5.1.1 allows remote attackers to execute ...)
 	TODO: check
 CVE-2012-0671 (Apple QuickTime before 7.7.2 allows remote attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0670 (Integer overflow in Apple QuickTime before 7.7.2 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0669 (Buffer overflow in Apple QuickTime before 7.7.2 on Windows allows ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0668 (Buffer overflow in Apple QuickTime before 7.7.2 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0667 (Integer signedness error in Apple QuickTime before 7.7.2 on Windows ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0666 (Stack-based buffer overflow in the plugin in Apple QuickTime before ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0665 (Heap-based buffer overflow in Apple QuickTime before 7.7.2 allows ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0664 (Heap-based buffer overflow in Apple QuickTime before 7.7.2 on Windows ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0663 (Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2012-0662 (Integer overflow in the Security Framework in Apple Mac OS X before ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0661 (Use-after-free vulnerability in QuickTime in Apple Mac OS X 10.7.x ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0660 (Buffer underflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0659 (Integer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0658 (Buffer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0657 (Quartz Composer in Apple Mac OS X before 10.7.4, when the RSS ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0656 (Race condition in LoginUIFramework in Apple Mac OS X 10.7.x before ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0655 (libsecurity in Apple Mac OS X before 10.7.4 does not properly restrict ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0654 (libsecurity in Apple Mac OS X before 10.7.4 accesses uninitialized ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0653
 	RESERVED
 CVE-2012-0652 (Login Window in Apple Mac OS X 10.7.3, when Legacy File Vault or ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0651 (The directory server in Directory Service in Apple Mac OS X 10.6.8 ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0650
 	RESERVED
 CVE-2012-0649 (Race condition in the initialization routine in blued in Bluetooth in ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2012-0648 (WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle ...)
 	- webkit <undetermined>
 CVE-2012-0647 (WebKit in Apple Safari before 5.1.4 does not properly handle redirects ...)
@@ -5261,29 +5261,29 @@ CVE-2012-0583 (Unspecified vulnerability in the MySQL Server component in Oracle
 	- mysql-5.1 5.1.62-1 (bug #670636)
 	- mysql-5.5 5.5.23-1
 CVE-2012-0582 (Unspecified vulnerability in the Siebel Clinical component in Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Industry Applications
 CVE-2012-0581 (Unspecified vulnerability in the Oracle Agile component in Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Supply Chain Products Suite
 CVE-2012-0580 (Unspecified vulnerability in the Oracle Agile PLM for Process ...)
-	TODO: check
+	NOT-FOR-US: Oracle Supply Chain Products Suite
 CVE-2012-0579 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
-	TODO: check
+	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0578
 	RESERVED
 CVE-2012-0577 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
-	TODO: check
+	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0576 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
-	TODO: check
+	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0575 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
-	TODO: check
+	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0574
 	RESERVED
 CVE-2012-0573 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
-	TODO: check
+	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0572
 	RESERVED
 CVE-2012-0571 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
-	TODO: check
+	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0570
 	RESERVED
 CVE-2012-0569
@@ -5291,17 +5291,17 @@ CVE-2012-0569
 CVE-2012-0568
 	RESERVED
 CVE-2012-0567 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
-	TODO: check
+	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0566 (Unspecified vulnerability in the Oracle Agile component in Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Supply Chain Products Suite
 CVE-2012-0565 (Unspecified vulnerability in the Oracle Agile component in Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Supply Chain Products Suite
 CVE-2012-0564 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
-	TODO: check
+	NOT-FOR-US: Oracle PeopleSoft Products
 CVE-2012-0563
 	RESERVED
 CVE-2012-0562 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...)
-	TODO: check
+	NOT-FOR-US: Oracle PeopleSoft Products
 CVE-2012-0561 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
 	NOT-FOR-US: Oracle PeopleSoft Products
 CVE-2012-0560 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
@@ -5893,11 +5893,11 @@ CVE-2012-0380
 CVE-2012-0379
 	RESERVED
 CVE-2012-0378 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...)
-	TODO: check
+	NOT-FOR-US: Cisco Adaptive Security Appliances
 CVE-2012-0377
 	RESERVED
 CVE-2012-0376 (The voice-sipstack component in Cisco Unified Communications Manager ...)
-	TODO: check
+	NOT-FOR-US: Cisco Unified Communications Manager
 CVE-2012-0375
 	RESERVED
 CVE-2012-0374
@@ -6206,7 +6206,7 @@ CVE-2012-0267 (The StopModule method in the NTR ActiveX control before 2.0.4.8 a
 CVE-2012-0266 (Multiple stack-based buffer overflows in the NTR ActiveX control ...)
 	NOT-FOR-US: NTR ActiveX control
 CVE-2012-0265 (Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows ...)
-	TODO: check
+	NOT-FOR-US: Apple QuickTime
 CVE-2011-5046 (The Graphics Device Interface (GDI) in win32k.sys in the kernel-mode ...)
 	NOT-FOR-US: Microsoft Windows 7
 CVE-2011-5045 (Cross-site scripting (XSS) vulnerability in details_view.php in PHP ...)
@@ -6993,7 +6993,7 @@ CVE-2012-0204
 CVE-2012-0203
 	RESERVED
 CVE-2012-0202 (Multiple stack-based buffer overflows in tm1admsd.exe in the Admin ...)
-	TODO: check
+	NOT-FOR-US: Admin Server in IBM Cognos TM1
 CVE-2012-0201 (Stack-based buffer overflow in pcspref.dll in pcsws.exe in IBM ...)
 	NOT-FOR-US: IBM Personal Communications
 CVE-2012-0200 (The server in IBM solidDB 6.5 before Interim Fix 6 does not properly ...)
@@ -7090,7 +7090,7 @@ CVE-2012-0180 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2
 CVE-2012-0179 (Double free vulnerability in tcpip.sys in Microsoft Windows Server ...)
 	NOT-FOR-US: Microsoft Windows
 CVE-2012-0178 (Race condition in partmgr.sys in Windows Partition Manager in ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2012-0177 (Heap-based buffer overflow in the Office Works File Converter in ...)
 	NOT-FOR-US: Microsoft
 CVE-2012-0176 (Double free vulnerability in Microsoft Silverlight 4 before 4.1.10329 ...)
@@ -17809,7 +17809,7 @@ CVE-2011-1392 (The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.
 CVE-2011-1391 (The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll ...)
 	NOT-FOR-US: IBM Rational Rhapsody
 CVE-2011-1390 (SQL injection vulnerability in the Maintenance tool in IBM Rational ...)
-	TODO: check
+	NOT-FOR-US: IBM Rational ClearQuest
 CVE-2011-1389 (Multiple directory traversal vulnerabilities in the vendor daemon in ...)
 	NOT-FOR-US: Telelogic License Server
 CVE-2011-1388 (The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll ...)
author	Federico Ceratto <federico.ceratto@gmail.com>	2012-05-19 10:41:23 +0000
committer	Federico Ceratto <federico.ceratto@gmail.com>	2012-05-19 10:41:23 +0000
commit	0c7227e5d4c22c99dd81e4c122e0ba5a53d67046 (patch)
tree	18924e72fded8c91e1819a8688634074429fea66
parent	138a26909474326adda8dcbc06ac9c62006c1926 (diff)