Author: federico-guest Date: 2011-04-23 12:08:45 +0000 (Sat, 23 Apr 2011) New Revision: 16572 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-04-22 21:15:13 UTC (rev 16571) +++ data/CVE/list 2011-04-23 12:08:45 UTC (rev 16572) @@ -73,7 +73,7 @@ CVE-2011-1790 RESERVED CVE-2010-4789 (Use-after-free vulnerability in the proxy-server implementation in IBM ...) - TODO: check + NOT-FOR-US: IBM Tivoli Directory Server CVE-2010-4788 (IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.62 (aka ...) NOT-FOR-US: Tivoli CVE-2010-4787 (IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.63 (aka ...) @@ -243,7 +243,7 @@ CVE-2011-1718 RESERVED CVE-2011-1716 (Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in ...) - TODO: check + NOT-FOR-US: Xymon CVE-2009-5071 (Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has unknown ...) TODO: check CVE-2011-XXXX @@ -336,7 +336,7 @@ [squeeze] - vlc 1.1.3-1squeeze5 NOTE: CVE id requested CVE-2011-1681 (vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka ...) - TODO: check + NOT-FOR-US: VMware Open Virtual Machine Tools CVE-2011-1680 (ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ ...) TODO: check CVE-2011-1679 (ncpfs 2.2.6 and earlier attempts to use (1) ncpmount to append to the ...) @@ -1077,9 +1077,9 @@ CVE-2011-1423 RESERVED CVE-2011-1422 (Cross-site scripting (XSS) vulnerability in an unspecified Shockwave ...) - TODO: check + NOT-FOR-US: EMC RSA Adaptive Authentication On-Premise CVE-2011-1421 (EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the ...) - TODO: check + NOT-FOR-US: EMC NetWorker CVE-2011-1420 (EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris SPARC ...) NOT-FOR-US: EMC Data Protection Advisor Collector CVE-2011-1419 (Apache Tomcat 7.x before 7.0.11, when web.xml has no security ...) @@ -1545,7 +1545,7 @@ CVE-2011-1207 RESERVED CVE-2011-1206 (Stack-based buffer overflow in the server process in ibmslapd.exe in ...) - TODO: check + NOT-FOR-US: IBM Tivoli Directory Server CVE-2011-1205 (Multiple buffer overflows in unspecified COM objects in Rational ...) NOT-FOR-US: IBM Rational ClearCase, ClearQuest CVE-2011-1204 (Google Chrome before 10.0.648.127 does not properly handle attributes, ...) @@ -2670,31 +2670,31 @@ CVE-2011-0862 RESERVED CVE-2011-0861 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0860 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0859 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Tax ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0858 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0857 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0856 (Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.49 GA ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0855 (Unspecified vulnerability in the InForm component in Oracle Industry ...) - TODO: check + NOT-FOR-US: Oracle Industry Applications CVE-2011-0854 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.1 ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0853 (Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0852 RESERVED CVE-2011-0851 (Unspecified vulnerability in Oracle PeopleSoft Enterprise ELS 9.0 ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0850 (Unspecified vulnerability in Oracle PeopleSoft Enterprise CRM 8.9 ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0849 (Unspecified vulnerability in Oracle Java Dynamic Management Kit 5.1 ...) - TODO: check + NOT-FOR-US: Oracle Java Dynamic Management Kit CVE-2011-0848 RESERVED CVE-2011-0847 (Unspecified vulnerability in the OpenSSO Enterprise and Sun Java ...) @@ -2710,23 +2710,23 @@ CVE-2011-0842 RESERVED CVE-2011-0841 (Unspecified vulnerability in Oracle Solaris 11 Express allows remote ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0840 (Unspecified vulnerability in Oracle PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise PeopleTools CVE-2011-0839 (Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0838 RESERVED CVE-2011-0837 (Unspecified vulnerability in the Agile Technology Platform component ...) - TODO: check + NOT-FOR-US: Oracle Supply Chain Products Suite CVE-2011-0836 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 ...) - TODO: check + NOT-FOR-US: Oracle JD Edwards EnterpriseOne CVE-2011-0835 RESERVED CVE-2011-0834 (Unspecified vulnerability in the Siebel CRM Core component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2011-0833 (Unspecified vulnerability in the Siebel CRM Core component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2011-0832 RESERVED CVE-2011-0831 @@ -2734,29 +2734,29 @@ CVE-2011-0830 RESERVED CVE-2011-0829 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0828 (Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2011-0827 (Unspecified vulnerability in the PeopleSoft Enterprise component in ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft CVE-2011-0826 (Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft CVE-2011-0825 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 ...) - TODO: check + NOT-FOR-US: Oracle JD Edwards EnterpriseOne CVE-2011-0824 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 ...) - TODO: check + NOT-FOR-US: Oracle JD Edwards EnterpriseOne CVE-2011-0823 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 ...) - TODO: check + NOT-FOR-US: Oracle JD Edwards EnterpriseOne CVE-2011-0822 RESERVED CVE-2011-0821 (Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0820 (Unspecified vulnerability in Oracle Solaris 10, and 11 Express allows ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0819 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 ...) - TODO: check + NOT-FOR-US: Oracle JD Edwards EnterpriseOne CVE-2011-0818 (Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 ...) - TODO: check + NOT-FOR-US: Oracle JD Edwards EnterpriseOne CVE-2011-0817 RESERVED CVE-2011-0816 @@ -2766,63 +2766,63 @@ CVE-2011-0814 RESERVED CVE-2011-0813 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0812 (Unspecified vulnerability in the Solaris component in Oracle Solaris ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0811 RESERVED CVE-2011-0810 (Unspecified vulnerability Oracle JD Edwards EnterpriseOne Tools 8.9 GA ...) - TODO: check + NOT-FOR-US: Oracle JD Edwards EnterpriseOne CVE-2011-0809 (Unspecified vulnerability in the Web ADI component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2011-0808 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2011-0807 (Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server ...) TODO: check CVE-2011-0806 (Unspecified vulnerability in the Network Foundation component in ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2011-0805 (Unspecified vulnerability in the UIX component in Oracle Database ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2011-0804 (Unspecified vulnerability in the Database Vault component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2011-0803 (Unspecified vulnerability in the JD Edwards EnterpriseOne Tools ...) - TODO: check + NOT-FOR-US: Oracle JD Edwards Products CVE-2011-0802 RESERVED CVE-2011-0801 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0800 (Unspecified vulnerability in the Solaris component in Oracle Solaris ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0799 (Unspecified vulnerability in the Oracle Warehouse Builder component in ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2011-0798 (Unspecified vulnerability in the Portal component in Oracle Fusion ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2011-0797 (Unspecified vulnerability in the Applications Install component in ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2011-0796 (Unspecified vulnerability in the Applications Install component in ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2011-0795 (Unspecified vulnerability in the Single Sign On component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2011-0794 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2011-0793 (Unspecified vulnerability in the Database Vault component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2011-0792 (Unspecified vulnerability in the Oracle Warehouse Builder component in ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2011-0791 (Unspecified vulnerability in the Application Object Library component ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2011-0790 (Unspecified vulnerability in Oracle Solaris 9 and 10 allows local ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0789 (Unspecified vulnerability in the Oracle HTTP Server component in ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2011-0788 RESERVED CVE-2011-0787 (Unspecified vulnerability in the Application Service Level Management ...) - TODO: check + NOT-FOR-US: Oracle CVE-2011-0786 RESERVED CVE-2011-0785 (Unspecified vulnerability in the Oracle Help component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle CVE-2011-0784 (Race condition in Google Chrome before 9.0.597.84 allows remote ...) - chromium-browser 9.0.597.84~r72991-1 [squeeze] - chromium-browser <not-affected> @@ -3922,7 +3922,7 @@ NOTE: maintainer is aware NOTE: http://www.isc.org/software/dhcp/advisories/cve-2011-0413 CVE-2011-0412 (Oracle Solaris 8, 9, and 10 stores back-out patch files (undo.Z) ...) - TODO: check + NOT-FOR-US: Oracle Solaris CVE-2011-0411 (The STARTTLS implementation in Postfix 2.4.x before 2.4.16, 2.5.x ...) TODO: lots of various other packages potentially affected, need to check them, see http://www.kb.cert.org/vuls/id/555316 - postfix 2.8.0-1