Author: fw
Date: 2012-01-13 21:01:05 +0000 (Fri, 13 Jan 2012)
New Revision: 18145
Modified:
data/CVE/list
Log:
CVE-2011-2528: plone3
CVE-2011-2385: otrs2
NFUs
Modified: data/CVE/list
==================================================================---
data/CVE/list 2012-01-13 20:05:10 UTC (rev 18144)
+++ data/CVE/list 2012-01-13 21:01:05 UTC (rev 18145)
@@ -6298,7 +6298,7 @@
[squeeze] - openssl <not-affected> (only affects 1.0.0 through 1.0.0d)
[lenny] - openssl <not-affected> (only affects 1.0.0 through 1.0.0d)
CVE-2011-3206 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: RHQ
CVE-2011-3205 (Buffer overflow in the gopherToHTML function in gopher.cc in the
...)
{DSA-2304-1}
- squid3 3.1.15-1 (low; bug #639755)
@@ -8030,7 +8030,7 @@
CVE-2011-2654 (The RPC implementation in the server in Novell Cloud Manager
1.1.2 ...)
NOT-FOR-US: Novell Cloud Manager
CVE-2011-2653 (Directory traversal vulnerability in the rtrlet component in
Novell ...)
- TODO: check
+ NOT-FOR-US: Novell ZENworks
CVE-2011-2652 (Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2,
as ...)
NOT-FOR-US: Kiwi, SUSE Studio
CVE-2011-2651 (Unspecified vulnerability in the file browser in Kiwi before
3.74.2, ...)
@@ -8326,7 +8326,7 @@
{DSA-2276-2 DSA-2276-1}
- asterisk 1:1.8.4.3-1 (bug #631446)
CVE-2011-2528 (Unspecified vulnerability in (1) Zope 2.12.x before 2.12.19 and
2.13.x ...)
- TODO: check
+ - plone3 <removed>
CVE-2011-2527
RESERVED
{DSA-2282-1}
@@ -8681,7 +8681,8 @@
CVE-2011-2386 (VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site
Survey ...)
NOT-FOR-US: VisiWave Site Survey
CVE-2011-2385 (The iPhoneHandle package 0.9.x before 0.9.7 and 1.0.x before
1.0.3 in ...)
- TODO: check
+ - otrs2 3.0.9+dfsg1-1
+ [lenny] - otrs2 <not-affected> (does not include iPhoneHandle package)
CVE-2011-2384
RESERVED
CVE-2011-2381 (CRLF injection vulnerability in Bugzilla 2.17.1 through 2.22.7,
3.0.x ...)