Author: jrdioko-guest Date: 2011-07-25 05:05:20 +0000 (Mon, 25 Jul 2011) New Revision: 16980 Modified: data/CVE/list Log: First stab at processing issues (NFUs), please check my work! Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-07-25 04:08:25 UTC (rev 16979) +++ data/CVE/list 2011-07-25 05:05:20 UTC (rev 16980) @@ -820,7 +820,7 @@ [squeeze] - linux-2.6 <not-affected> (Vulnerable code not present) [lenny] - linux-2.6 <not-affected> (Vulnerable code not present) CVE-2011-2520 (fw_dbus.py in system-config-firewall 1.2.29 and earlier uses the ...) - TODO: check + NOT-FOR-US: system-config-firewall CVE-2011-2519 RESERVED CVE-2011-2518 @@ -5804,7 +5804,7 @@ CVE-2011-0768 RESERVED CVE-2011-0767 (Cross-site scripting (XSS) vulnerability in the management GUI in the ...) - TODO: check + NOT-FOR-US: Imperva SecureSphere Web Application Firewall CVE-2011-0766 (The random number generator in the Crypto application before 2.0.2.2, ...) - erlang <unfixed> (bug #628456) NOTE: http://www.kb.cert.org/vuls/id/178990 @@ -5893,7 +5893,8 @@ CVE-2011-0746 (Cross-site request forgery (CSRF) vulnerability in ...) NOT-FOR-US: ZyXEL O2 DSL Router CVE-2011-0745 (SugarCRM before 6.1.3 does not properly handle reloads and direct ...) - TODO: check + NOT-FOR-US: SugarCRM + NOTE: there is an RFP for SugarCRM #457876 CVE-2011-0744 RESERVED CVE-2011-0743 @@ -7491,11 +7492,11 @@ CVE-2011-0220 RESERVED CVE-2011-0219 (Apple Safari before 5.0.6 allows remote attackers to bypass the Same ...) - TODO: check + NOT-FOR-US: Apple Safari CVE-2011-0218 (WebKit, as used in Apple Safari before 5.0.6, allows remote attackers ...) TODO: check CVE-2011-0217 (Apple Safari before 5.0.6 provides AutoFill information to scripts ...) - TODO: check + NOT-FOR-US: Apple Safari CVE-2011-0216 (Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote ...) TODO: check CVE-2011-0215 (ImageIO in Apple Safari before 5.0.6 on Windows does not properly ...)