thr3ads.net - Secure testing commits - [Secure-testing-commits] r17482

If this information is useful, please help other people find it:
Share via:
Federico Ceratto
2011-Oct-23 17:55 UTC
[Secure-testing-commits] r17482 - data/CVE

Author: federico-guest
Date: 2011-10-23 17:55:09 +0000 (Sun, 23 Oct 2011)
New Revision: 17482

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-10-23 16:20:54 UTC (rev 17481)
+++ data/CVE/list	2011-10-23 17:55:09 UTC (rev 17482)
@@ -1607,7 +1607,7 @@
 	- openjdk-6 6b23~pre11-1
 	- openjdk-7 7~b147-2.0-1
 CVE-2011-3559 (Unspecified vulnerability in Oracle Communications Server 2.0;
...)
-	TODO: check
+	NOT-FOR-US: Oracle Communications Server, GlassFish Enterprise Server, Sun
Java System App Server
 CVE-2011-3558 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
 	- sun-java6 <unfixed> (bug #645881)
 	- openjdk-6 6b23~pre11-1
@@ -1660,84 +1660,84 @@
 	- openjdk-6 6b23~pre11-1
 	- openjdk-7 7~b147-2.0-1
 CVE-2011-3543 (Unspecified vulnerability in Oracle Solaris 11 Express allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris 11 Express
 CVE-2011-3542 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express
allows ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-3541 (Unspecified vulnerability in the Oracle Outside In Technology
...)
-	TODO: check
+	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2011-3540
 	RESERVED
 CVE-2011-3539 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express
allows ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-3538 (Unspecified vulnerability in the Sun Ray component in Oracle
...)
-	TODO: check
+	NOT-FOR-US: Oracle Virtualization
 CVE-2011-3537 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
Express ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-3536 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-3535 (Unspecified vulnerability in the Solaris component in Oracle Sun
...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-3534 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
Express ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-3533 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
-	TODO: check
+	NOT-FOR-US: Oracle PeopleSoft
 CVE-2011-3532 (Unspecified vulnerability in the Oracle Agile Product Supplier
...)
-	TODO: check
+	NOT-FOR-US: Oracle Supply Chain
 CVE-2011-3531
 	RESERVED
 CVE-2011-3530 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
-	TODO: check
+	NOT-FOR-US: Oracle PeopleSoft
 CVE-2011-3529 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
-	TODO: check
+	NOT-FOR-US: Oracle PeopleSoft
 CVE-2011-3528 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
-	TODO: check
+	NOT-FOR-US: Oracle PeopleSoft
 CVE-2011-3527 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
-	TODO: check
+	NOT-FOR-US: Oracle PeopleSoft
 CVE-2011-3526 (Unspecified vulnerability in the Siebel Core - UIF Server
component in ...)
-	TODO: check
+	NOT-FOR-US: Oracle Siebel
 CVE-2011-3525 (Unspecified vulnerability in the Application Express component
in ...)
-	TODO: check
+	NOT-FOR-US: Oracle Database Server
 CVE-2011-3524
 	RESERVED
 CVE-2011-3523 (Unspecified vulnerability in the Oracle Web Services Manager
component ...)
-	TODO: check
+	NOT-FOR-US: Oracle Fusion
 CVE-2011-3522 (Unspecified vulnerability in SysFW 8.0 on certain SPARC T3,
Netra ...)
-	TODO: check
+	NOT-FOR-US: SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade
 CVE-2011-3521 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
 	- sun-java6 <unfixed> (bug #645881)
 	- openjdk-6 6b23~pre11-1
 	- openjdk-7 7~b147-2.0-1
 CVE-2011-3520 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
-	TODO: check
+	NOT-FOR-US: PeopleSoft Enterprise PeopleTools
 CVE-2011-3519 (Unspecified vulnerability in the Oracle Applications Framework
...)
-	TODO: check
+	NOT-FOR-US: Oracle E-Business Suite
 CVE-2011-3518 (Unspecified vulnerability in the Siebel Core - UIF Client
component in ...)
-	TODO: check
+	NOT-FOR-US: Oracle Siebel
 CVE-2011-3517 (Unspecified vulnerability in the Oracle OpenSSO component in
Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Sun Products Suite
 CVE-2011-3516 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
 	- sun-java6 <not-affected> (Windows-specific)
 	- openjdk-6 <not-affected> (Windows-specific)
 CVE-2011-3515 (Unspecified vulnerability in the Oracle Solaris 10 and 11
Express ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-3514
 	RESERVED
 CVE-2011-3513 (Unspecified vulnerability in the Oracle Application Object
Library ...)
-	TODO: check
+	NOT-FOR-US: Oracle E-Business Suite
 CVE-2011-3512 (Unspecified vulnerability in the Core RDBMS component in Oracle
...)
-	TODO: check
+	NOT-FOR-US: Oracle Database Server
 CVE-2011-3511 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Database Server
 CVE-2011-3510 (Unspecified vulnerability in the Oracle Business Intelligence
...)
-	TODO: check
+	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2011-3509
 	RESERVED
 CVE-2011-3508 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
Express ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-3507 (Unspecified vulnerability in the Oracle Communications Unified
...)
-	TODO: check
+	NOT-FOR-US: Oracle Sun Products Suite
 CVE-2011-3506 (Unspecified vulnerability in the Oracle OpenSSO component in
Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Sun Products Suite
 CVE-2011-3505
 	RESERVED
 CVE-2011-3504 (The Matroska format decoder in FFmpeg before 0.8.3 does not
properly ...)
@@ -2194,7 +2194,7 @@
 	- openttd 1.1.3-1
 	NOTE: http://www.openwall.com/lists/oss-security/2011/09/02/4
 CVE-2011-3340 (SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP
allows ...)
-	TODO: check
+	NOT-FOR-US: ATCOM Netvolution
 CVE-2010-4832
 	RESERVED
 CVE-2010-4831 (Untrusted search path vulnerability in
gdk/win32/gdkinput-win32.c in ...)
@@ -2272,7 +2272,7 @@
 CVE-2011-3311
 	RESERVED
 CVE-2011-3310 (The Home Page component in Cisco CiscoWorks Common Services
before 4.1 ...)
-	TODO: check
+	NOT-FOR-US: Cisco CiscoWorks
 CVE-2011-3309
 	RESERVED
 CVE-2011-3308
@@ -2304,7 +2304,7 @@
 CVE-2011-3295
 	RESERVED
 CVE-2011-3294 (Cross-site scripting (XSS) vulnerability in the login page in
the ...)
-	TODO: check
+	NOT-FOR-US: Cisco TelePresence
 CVE-2011-3293
 	RESERVED
 CVE-2011-3292
@@ -2674,19 +2674,19 @@
 CVE-2011-3163
 	RESERVED
 CVE-2011-3162 (Unspecified vulnerability in HP Data Protector Notebook
Extension 6.20 ...)
-	TODO: check
+	NOT-FOR-US: HP Data Protector
 CVE-2011-3161 (Unspecified vulnerability in HP Data Protector Notebook
Extension 6.20 ...)
-	TODO: check
+	NOT-FOR-US: HP Data Protector
 CVE-2011-3160 (Unspecified vulnerability in HP Data Protector Notebook
Extension 6.20 ...)
-	TODO: check
+	NOT-FOR-US: HP Data Protector
 CVE-2011-3159 (Unspecified vulnerability in HP Data Protector Notebook
Extension 6.20 ...)
-	TODO: check
+	NOT-FOR-US: HP Data Protector
 CVE-2011-3158 (Unspecified vulnerability in HP Data Protector Notebook
Extension 6.20 ...)
-	TODO: check
+	NOT-FOR-US: HP Data Protector
 CVE-2011-3157 (Unspecified vulnerability in HP Data Protector Notebook
Extension 6.20 ...)
-	TODO: check
+	NOT-FOR-US: HP Data Protector
 CVE-2011-3156 (Unspecified vulnerability in HP Data Protector Notebook
Extension 6.20 ...)
-	TODO: check
+	NOT-FOR-US: HP Data Protector
 CVE-2011-3155 (Unspecified vulnerability in HP Onboard Administrator (OA) 3.21
...)
 	NOT-FOR-US: HP Onboard Administrator
 CVE-2011-3154
@@ -4355,9 +4355,9 @@
 CVE-2011-2586
 	RESERVED
 CVE-2011-2585 (Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1)
allows ...)
-	TODO: check
+	NOT-FOR-US: Cisco Show and Share
 CVE-2011-2584 (Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1)
allows ...)
-	TODO: check
+	NOT-FOR-US: Cisco Show and Share
 CVE-2011-2583
 	RESERVED
 CVE-2011-2582
@@ -5046,7 +5046,7 @@
 CVE-2011-2329 (The rampart_timestamp_token_validate function in ...)
 	- rampart <unfixed> (bug #631221)
 CVE-2011-2327 (Unspecified vulnerability in the Oracle Communications Unified
...)
-	TODO: check
+	NOT-FOR-US: Oracle Sun Products Suite
 CVE-2011-2326
 	RESERVED
 CVE-2011-2325
@@ -5054,37 +5054,37 @@
 CVE-2011-2324
 	RESERVED
 CVE-2011-2323 (Unspecified vulnerability in the Health Sciences - Oracle
Thesaurus ...)
-	TODO: check
+	NOT-FOR-US: Oracle Thesaurus Management System
 CVE-2011-2322 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Database Server
 CVE-2011-2321
 	RESERVED
 CVE-2011-2320 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
-	TODO: check
+	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2011-2319 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
-	TODO: check
+	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2011-2318 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
-	TODO: check
+	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2011-2317
 	RESERVED
 CVE-2011-2316 (Unspecified vulnerability in the Siebel Apps - Marketing
component in ...)
-	TODO: check
+	NOT-FOR-US: Oracle Siebel
 CVE-2011-2315 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
-	TODO: check
+	NOT-FOR-US: PeopleSoft Enterprise
 CVE-2011-2314 (Unspecified vulnerability in the Oracle Containers for J2EE
component ...)
-	TODO: check
+	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2011-2313 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-2312 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-2311 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-2310 (Unspecified vulnerability in the Oracle Waveset component in
Oracle ...)
-	TODO: check
+	NOT-FOR-US: Oracle Sun Products Suite
 CVE-2011-2309 (Unspecified vulnerability in the Health Sciences - Oracle
Clinical, ...)
-	TODO: check
+	NOT-FOR-US: Oracle Industry Applications
 CVE-2011-2308 (Unspecified vulnerability in the Oracle Application Object
Library ...)
-	TODO: check
+	NOT-FOR-US: Oracle E-Business Suite
 CVE-2011-2307 (Unspecified vulnerability in Oracle SysFW 8.1.0.a in various
Oracle ...)
 	NOT-FOR-US: Oracle SysFW
 CVE-2011-2306 (Unspecified vulnerability in Oracle Linux 4 and 5 allows remote
...)
@@ -5093,7 +5093,7 @@
 	- virtualbox-ose <not-affected> (Only affects 4.x)
 	- virtualbox 4.0.10-dfsg-1
 CVE-2011-2304 (Unspecified vulnerability in Oracle Solaris 10 allows remote
attackers ...)
-	TODO: check
+	NOT-FOR-US: Oracle Solaris
 CVE-2011-2303 (Unspecified vulnerability in the Oracle Application Object
Library ...)
 	TODO: check
 CVE-2011-2302 (Unspecified vulnerability in the Oracle Application Object
Library ...)
Secure testing commits - Oct 2011 - r17482 - data/CVE

[Secure-testing-commits] r17482 - data/CVE
