Author: federico-guest Date: 2011-08-20 15:55:22 +0000 (Sat, 20 Aug 2011) New Revision: 17100 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-08-20 11:26:37 UTC (rev 17099) +++ data/CVE/list 2011-08-20 15:55:22 UTC (rev 17100) @@ -529,27 +529,27 @@ CVE-2011-XXXX [minissdpd multiple issues] - minisspdp 1.0.20110729-1 (bug #635836) CVE-2011-2955 (Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer 11.0 CVE-2011-2954 (Use-after-free vulnerability in the AutoUpdate feature in RealNetworks ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer 11.0 CVE-2011-2953 (An unspecified ActiveX control in the browser plugin in RealNetworks ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2952 (Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2951 (Buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2950 (Heap-based buffer overflow in qcpfformat.dll in RealNetworks ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2949 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2948 (RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2947 (Cross-zone scripting vulnerability in the RealPlayer ActiveX control ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2946 (Unspecified vulnerability in an ActiveX control in RealNetworks ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2945 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) - TODO: check + NOT-FOR-US: RealNetworks RealPlayer CVE-2011-2944 RESERVED CVE-2011-2943 @@ -652,7 +652,7 @@ CVE-2011-2901 RESERVED CVE-2011-2900 (Stack-based buffer overflow in the (1) put_dir function in mongoose.c ...) - TODO: check + NOT-FOR-US: Mongoose CVE-2011-2899 RESERVED - foomatic-gui 0.7.9.5 (low) @@ -1028,7 +1028,7 @@ CVE-2011-2734 RESERVED CVE-2011-2733 (EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, ...) - TODO: check + NOT-FOR-US: EMC RSA Adaptive Authentication On-Premise CVE-2011-2732 RESERVED CVE-2011-2731 @@ -2285,13 +2285,13 @@ CVE-2011-2225 RESERVED CVE-2011-2224 (The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through ...) - TODO: check + NOT-FOR-US: Novell Data Synchronizer CVE-2011-2223 (The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through ...) - TODO: check + NOT-FOR-US: Novell Data Synchronizer CVE-2011-2222 (Session fixation vulnerability in WebAdmin in the Mobility Pack before ...) - TODO: check + NOT-FOR-US: Novell Data Synchronizer CVE-2011-2221 (The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through ...) - TODO: check + NOT-FOR-US: Novell Data Synchronizer CVE-2011-2220 (Stack-based buffer overflow in NFREngine.exe in Novell File Reporter ...) NOT-FOR-US: Novell File Reporter CVE-2011-2219 @@ -3959,9 +3959,9 @@ CVE-2011-1626 RESERVED CVE-2011-1625 (Cisco IOS 12.2, 12.3, 12.4, 15.0, and 15.1, when the data-link ...) - TODO: check + NOT-FOR-US: Cisco IOS CVE-2011-1624 (Cisco IOS 12.2(58)SE, when a login banner is configured, allows remote ...) - TODO: check + NOT-FOR-US: Cisco IOS CVE-2011-1623 (Cisco Media Processing Software before 1.2 on Media Experience Engine ...) NOT-FOR-US: Cisco CVE-2011-1622 @@ -7248,7 +7248,7 @@ - puppet 2.6.2-3 [lenny] - puppet <not-affected> (Only affects 2.6.x) CVE-2011-0527 (VMware vFabric tc Server (aka SpringSource tc Server) 2.0.x before ...) - TODO: check + NOT-FOR-US: VMware vFabric tc Server CVE-2011-0526 (Cross-site scripting (XSS) vulnerability in index.php in Vanilla ...) NOT-FOR-US: Vanilla Forums CVE-2011-0525 @@ -8191,9 +8191,9 @@ CVE-2011-0258 RESERVED CVE-2011-0257 (Integer signedness error in Apple QuickTime before 7.7 allows remote ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2011-0256 (Integer overflow in Apple QuickTime before 7.7 allows remote attackers ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2011-0255 (WebKit, as used in Apple Safari before 5.0.6, allows remote attackers ...) - chromium-browser <undetermined> - webkit <undetermined>