Secure testing commits - Mar 2012 - r18760 - data/CVE

Author: federico-guest
Date: 2012-03-25 18:22:18 +0000 (Sun, 25 Mar 2012)
New Revision: 18760

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-03-25 12:35:52 UTC (rev 18759)
+++ data/CVE/list	2012-03-25 18:22:18 UTC (rev 18760)
@@ -197,7 +197,7 @@
 CVE-2012-1798
 	RESERVED
 CVE-2012-1797 (IBM DB2 9.5 uses world-writable permissions for nodes.reg, which
has ...)
-	NOT-FOR-US: DB2
+	NOT-FOR-US: IBM DB2
 CVE-2012-1796 (Unspecified vulnerability in IBM Tivoli Monitoring Agent (ITMA),
as ...)
 	NOT-FOR-US: Tivoli
 CVE-2012-1795 (webglimpse.cgi in Webglimpse before 2.20.0 allows remote
attackers to ...)
@@ -946,11 +946,11 @@
 CVE-2012-1442 (The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00,
McAfee ...)
 	TODO: check
 CVE-2012-1441 (The Microsoft EXE file parser in eSafe 7.0.17.0 and Prevx 3.0
allows ...)
-	TODO: check
+	NOT-FOR-US: eSafe, Prevx
 CVE-2012-1440 (The ELF file parser in Norman Antivirus 6.06.12, eSafe 7.0.17.0,
CA ...)
-	TODO: check
+	NOT-FOR-US: multiple Antivirus applications
 CVE-2012-1439 (The ELF file parser in eSafe 7.0.17.0, Rising Antivirus
22.83.00.03, ...)
-	TODO: check
+	NOT-FOR-US: multiple Antivirus applications
 CVE-2012-1438 (The Microsoft Office file parser in Comodo Antivirus 7425 and
Sophos ...)
 	NOT-FOR-US: multiple Anti-Virus applications
 CVE-2012-1437 (The Microsoft Office file parser in Comodo Antivirus 7425 allows
...)
@@ -980,15 +980,15 @@
 CVE-2012-1425 (The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL
SDK ...)
 	TODO: check
 CVE-2012-1424 (The TAR file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal
(aka Cat ...)
-	TODO: check
+	NOT-FOR-US: multiple Antivirus applications
 CVE-2012-1423 (The TAR file parser in Command Antivirus 5.2.11.5, Emsisoft ...)
-	TODO: check
+	NOT-FOR-US: multiple Antivirus applications
 CVE-2012-1422 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
NOD32 ...)
-	TODO: check
+	NOT-FOR-US: multiple Antivirus applications
 CVE-2012-1421 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
Norman ...)
-	TODO: check
+	NOT-FOR-US: multiple Antivirus applications
 CVE-2012-1420 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
Command ...)
-	TODO: check
+	NOT-FOR-US: multiple Antivirus applications
 CVE-2012-1419 (The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat
...)
 	TODO: check
 CVE-2012-1418 (Multiple unspecified vulnerabilities in Google Chrome before
...)
@@ -2704,7 +2704,7 @@
 CVE-2012-0720
 	RESERVED
 CVE-2012-0719 (Cross-site scripting (XSS) vulnerability in IBM Tivoli Endpoint
...)
-	TODO: check
+	NOT-FOR-US: IBM Tivoli Endpoint Manager
 CVE-2012-0718
 	RESERVED
 CVE-2012-0717
@@ -2718,13 +2718,13 @@
 CVE-2012-0713
 	RESERVED
 CVE-2012-0712 (The XML feature in IBM DB2 9.5 before FP9, 9.7 through FP5, and
9.8 ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2012-0711 (Integer signedness error in the db2dasrrm process in the DB2
...)
-	TODO: check
+	NOT-FOR-US: DB2
 CVE-2012-0710 (IBM DB2 9.1 before FP11, 9.5 before FP9, 9.7 before FP5, and 9.8
...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2012-0709 (IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4
does not ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2012-0708
 	RESERVED
 CVE-2012-0707 (Cross-site scripting (XSS) vulnerability in IBM WebSphere
Lombardi ...)
@@ -2880,7 +2880,7 @@
 CVE-2012-0647 (WebKit in Apple Safari before 5.1.4 does not properly handle
redirects ...)
 	TODO: check
 CVE-2012-0646 (Format string vulnerability in VPN in Apple iOS before 5.1
allows ...)
-	TODO: check
+	NOT-FOR-US: VPN in Apple iOS
 CVE-2012-0645 (Siri in Apple iOS before 5.1 does not properly restrict the
ability of ...)
 	NOT-FOR-US: Siri
 CVE-2012-0644 (Race condition in the Passcode Lock feature in Apple iOS before
5.1 ...)