[Secure-testing-commits] r165 - sarge-checks/CVE
Joey Hess
joeyh@haydn.debian.org
Fri, 03 Dec 2004 13:18:26 -0700
Author: joeyh
Date: 2004-12-03 13:17:47 -0700 (Fri, 03 Dec 2004)
New Revision: 165
Added:
sarge-checks/CVE/Makefile
Modified:
sarge-checks/CVE/list
Log:
automatic updates and makefile
DSA link reformat
Added: sarge-checks/CVE/Makefile
===================================================================
--- sarge-checks/CVE/Makefile 2004-12-03 20:14:13 UTC (rev 164)
+++ sarge-checks/CVE/Makefile 2004-12-03 20:17:47 UTC (rev 165)
@@ -0,0 +1,5 @@
+update:
+ rm -f full-cve.html
+ wget --quiet http://www.cve.mitre.org/cve/downloads/full-cve.html
+ ../update.pl full-cve.html ../DSA/list list > list.new
+ mv -f list.new list
Modified: sarge-checks/CVE/list
===================================================================
--- sarge-checks/CVE/list 2004-12-03 20:14:13 UTC (rev 164)
+++ sarge-checks/CVE/list 2004-12-03 20:17:47 UTC (rev 165)
@@ -1,5 +1,4 @@
begin claimed by wart
-
CVE-2004-0356
NOTE: not-for-us (windows mta)
CVE-2004-0347
@@ -42,14 +41,14 @@
CVE-2004-0190
NOTE: not-for-us (symantec)
CVE-2004-0189
- NOTE: covered by DSA-474
+ {DSA-474}
CVE-2004-0188
- NOTE: covered by DSA-461
+ {DSA-461}
CVE-2004-0186
- NOTE: covered by DSA-463
+ {DSA-463}
CVE-2004-0185
+ {DSA-457}
- wu-ftpd 2.6.2-17.2
- NOTE: covered by DSA-457
CVE-2004-0173
NOTE: not-for-us (apache/cygwin)
CVE-2004-0171
@@ -61,14 +60,14 @@
CVE-2004-0165
NOTE: not-for-us (os x)
CVE-2004-0160
- NOTE: covered by DSA-446
+ {DSA-446}
CVE-2004-0159
- NOTE: covered by DSA-447
+ {DSA-447}
CVE-2004-0150
- NOTE: covered by DSA-458
+ {DSA-458-2 DSA-458}
CVE-2004-0148
+ {DSA-457}
- wu-ftpd 2.6.2-17.2
- NOTE: covered by DSA-457
CVE-2004-0131
NOTE: not-for-us (gnu radiusd, not in debian)
CVE-2004-0129
@@ -88,20 +87,19 @@
CVE-2004-0113
- apache2 2.0.52
CVE-2004-0111
- NOTE: covered by DSA-464
+ {DSA-464}
CVE-2004-0108
- NOTE: covered by DSA-460
+ {DSA-460}
CVE-2004-0099
NOTE: not-for-us (freebsd)
CVE-2004-0096
- libapache-mod-python 2:2.7.10
- NOTE: covered by DSA-452
CVE-2004-0095
NOTE: not-for-us (mcafee)
CVE-2004-0094
- NOTE: covered by DSA-443
+ {DSA-443}
CVE-2004-0093
- NOTE: covered by DSA-443
+ {DSA-443}
CVE-2004-0089
NOTE: not-for-us (os x)
CVE-2004-0082
@@ -113,7 +111,7 @@
mutt 1.5.6-20040722+1
TODO: test
CVE-2004-0077
- NOTE: covered by DSA-438
+ {DSA-514 DSA-475 DSA-470 DSA-466 DSA-456 DSA-454 DSA-453 DSA-450 DSA-444 DSA-442 DSA-441 DSA-440 DSA-439 DSA-438}
CVE-2004-0075
kernel-source-2.4.24 2.4.24-3
TODO: test
@@ -143,15 +141,15 @@
CVE-2004-0031
NOTE: not-for-us (phpgedview, not in debian)
CVE-2004-0028
- NOTE: covered by DSA-420
+ {DSA-420}
CVE-2004-0016
- NOTE: covered by DSA-419
+ {DSA-419}
CVE-2004-0015
- NOTE: covered by DSA-418
+ {DSA-418}
CVE-2004-0013
- NOTE: covered by DSA-414
+ {DSA-414}
CVE-2004-0011
- NOTE: covered by DSA-416
+ {DSA-416}
CVE-2004-0009
apache-ssl 1.3.31
TODO: test
@@ -161,38 +159,36 @@
kernel-image-2.6.8-9-amd64-generic
HELP: what version?
TODO: test?
-
end claimed by wart
-
CVE-2003-1328
NOTE: not-for-us (windows)
CVE-2003-1326
NOTE: not-for-us (windows)
CVE-2003-1022
+ {DSA-416}
- fsp 2.81.b18-1
- NOTE: covered by DSA-416
CVE-2003-0994
NOTE: not-for-us (norton)
CVE-2003-0993
- apache 1.3.29.0.2-4
CVE-2003-0991
+ {DSA-436}
- mailman 2.1-1
- NOTE: covered by DSA-436
NOTE: I have mailed Tollef Fog Heen <tfheen@debian.org> about this.
NOTE: Tollef Fog Heen reply to me that 2.1 versions are not vulnerable
CVE-2003-0988
- kdepim 3.1.5-1
CVE-2003-0985
+ {DSA-475 DSA-470 DSA-450 DSA-442 DSA-440 DSA-439 DSA-427 DSA-423 DSA-417 DSA-413}
NOTE: fixed in 2.4.24-rc1
- NOTE: covered by DSA-413
CVE-2003-0969
+ {DSA-411}
- mpg321 0.2.10.3
- NOTE: covered by DSA-411
CVE-2003-0966
NOTE: not-for-us (elm)
CVE-2003-0924
+ {DSA-426}
- netpbm-free 2:9.25-9
- NOTE: covered by DSA-426
CVE-2003-0905
NOTE: not-for-us (microsoft)
CVE-2003-0903
@@ -200,11 +196,11 @@
CVE-2003-0825
NOTE: not-for-us (microsoft)
CVE-2003-0145
+ {DSA-261}
- tcpdump 3.7.2-1
- NOTE: covered by DSA-261
CVE-2003-0143
+ {DSA-259}
- qpopper 4.0.4-9
- NOTE: covered by DSA-259
CVE-2003-0125
NOTE: not-for-us (SOHO Routefinder)
CVE-2003-0124
@@ -214,11 +210,11 @@
CVE-2003-0122
NOTE: not-for-us (lotus notes)
CVE-2003-0120
+ {DSA-256}
- mhc 0.25+20030224-1
- NOTE: covered by DSA-256
CVE-2003-0108
+ {DSA-255}
- tcpdump 3.7.1-1.2
- NOTE: covered by DSA-255
CVE-2003-0107
- zlib 1.1.4-10
CVE-2003-0104
@@ -226,8 +222,8 @@
CVE-2003-0103
NOTE: not-for-us (nokia handset)
CVE-2003-0102
+ {DSA-260}
- file 3.40-1.1
- NOTE: covered by DSA-260
CVE-2003-0100
NOTE: not-for-us (cisco)
CVE-2003-0097
@@ -237,37 +233,37 @@
CVE-2003-0094
NOTE: not-for-us (mandrake specific)
CVE-2003-0093
+ {DSA-261}
- tcpdump 3.7.1-1
- NOTE: covered by DSA-261
CVE-2003-0088
NOTE: not-for-us (macosX)
CVE-2003-0087
NOTE: not-for-us (AIX)
CVE-2003-0081
+ {DSA-258}
- ethereal 0.9.9-2
- NOTE: covered by DSA-258
CVE-2003-0079
NOTE: not-for-us (hanterm before 2.0.5)
CVE-2003-0078
+ {DSA-253}
- openssl 0.9.7a-1
- NOTE: covered by DSA-253
CVE-2003-0077
NOTE: not-for-us (hanterm before 2.0.5)
CVE-2003-0075
NOTE: not-for-us (blade encoder not in Debian)
CVE-2003-0073
+ {DSA-303}
- mysql 4.0.12-2
- NOTE: covered by DSA-303
CVE-2003-0071
+ {DSA-380}
- xfree86 4.2.1-11
- NOTE: covered by DSA-380
CVE-2003-0070
- vte 0.11.10-1
CVE-2003-0069
- putty 0.54-1
CVE-2003-0068
+ {DSA-496}
- eterm 0.9.2-6
- NOTE: covered by DSA-496
CVE-2003-0067
NOTE: I have mailed Göran Weinholt <weinholt@debian.org> about this.
NOTE: Göran Weinholt <weinholt@debian.org> tell me that aterm 0.4.2 was
@@ -281,8 +277,8 @@
CVE-2003-0064
NOTE: not-for-us (dtterm not in Debian)
CVE-2003-0063
+ {DSA-380}
- xfree86 4.2.1-11
- NOTE: covered by DSA-380
CVE-2003-0062
NOTE: not-for-us (NOD32 not in Debian)
CVE-2003-0059
@@ -304,20 +300,20 @@
CVE-2003-0045
NOTE: not-for-us (windows)
CVE-2003-0043
+ {DSA-246}
- tomcat 3.3.1a-1
- NOTE: covered by DSA-246
CVE-2003-0040
+ {DSA-247}
- courier-ssl 0.40.2-3
- NOTE: covered by DSA-247
CVE-2003-0039
+ {DSA-245}
- dhcp3 1.1.2-1
- NOTE: covered by DSA-245
CVE-2003-0033
+ {DSA-297}
- snort 2.0.0-1
- NOTE: covered by DSA-297
CVE-2003-0032
+ {DSA-228}
- libmcrypt 2.5.5-1
- NOTE: covered by DSA-228
CVE-2003-0027
NOTE: not-for-us (sun)
CVE-2003-0024
@@ -338,22 +334,21 @@
CVE-2003-0019
NOTE: not-for-us (redhat 8.0 only)
CVE-2003-0018
+ {DSA-423 DSA-358}
NOTE: fixed after 2.6/2.4.21 kernel
- NOTE: covered by DSA-358
- NOTE: covered by DSA-423
CVE-2003-0017
NOTE: not-for-us (apache on windows)
CVE-2003-0016
NOTE: not-for-us (apache on windows)
CVE-2003-0015
+ {DSA-233}
- cvs 1.11.2-5.1
- NOTE: covered by DSA-233
CVE-2003-0013
+ {DSA-230}
- bugzilla 2.16.2-1
- NOTE: covered by DSA-230
CVE-2003-0012
+ {DSA-230}
- bugzilla 2.16.2-1
- NOTE: covered by DSA-230
CVE-2003-0009
NOTE: not-for-us (windows)
CVE-2003-0007
@@ -449,11 +444,11 @@
CVE-2002-1479
- cacti 0.6.8-1
CVE-2002-1478
+ {DSA-164}
- cacti 0.6.8a-2
- NOTE: covered by DSA-164
CVE-2002-1477
+ {DSA-164}
- cacti 0.6.8a-2
- NOTE: covered by DSA-164
CVE-2002-1476
NOTE: not-for-us (NetBSD)
CVE-2002-1472
@@ -492,11 +487,10 @@
CVE-2002-1430
NOTE: not-for-us (Sympoll not in Debian)
CVE-2002-1425
+ {DSA-141}
- mpack 1.5-9
- NOTE: covered by DSA-141
CVE-2002-1424
- mpack 1.5-9
- NOTE: covered by DSA-141
CVE-2002-1420
NOTE: not-for-us (OpenBSD)
CVE-2002-1419
@@ -510,23 +504,23 @@
CVE-2002-1413
NOTE: not-for-us (RCONAG6 for Novell Netware SP2)
CVE-2002-1412
+ {DSA-138}
- gallery 1.3-3
- NOTE: covered by DSA-138
CVE-2002-1407
NOTE: not-for-us (TinySSL not in Debian)
CVE-2002-1405
+ {DSA-210}
- lynx 2.8.4.1b-4
- NOTE: covered by DSA-210
CVE-2002-1403
+ {DSA-219}
- dhcpd 1.3.22pl2-2
- NOTE: covered by DSA-219
CVE-2002-1396
- php4 4:4.3.2+rc3-1
NOTE: according to http://www.securityfocus.com/bid/6488
NOTE: woody is not vulnerable
CVE-2002-1394
+ {DSA-225}
- tomcat4 4.1.9-1
- NOTE: covered by DSA-225
CVE-2002-1392
- mgetty 1.1.30-1
NOTE: woody version seems to be vulnerable see bug #199351
@@ -534,27 +528,27 @@
- mgetty 1.1.30-1
NOTE: woody version seems to be vulnerable see bug #199351
CVE-2002-1390
+ {DSA-223}
- geneweb 4.09-1
- NOTE: covered by DSA-223
CVE-2002-1389
+ {DSA-217}
- typespeed 0.4.2-2
- NOTE: covered by DSA-217
CVE-2002-1388
+ {DSA-221}
- mhonarc 2.5.14-1
- NOTE: covered by DSA-221
CVE-2002-1385
- openwebmail 1.90-1
CVE-2002-1384
+ {DSA-232 DSA-226 DSA-222}
- xpdf 2.01-2
- NOTE: covered by DSA-222
CVE-2002-1382
- flashplugin-nonfree 6.0.69-1
CVE-2002-1381
- exim4 4.11-0.0.1
- exim (unfixed; bug #171774)
CVE-2002-1380
+ {DSA-336}
- kernel-source-2.2.25
- NOTE: covered by DSA-336
CVE-2002-1377
- vim 6.1.263-1
NOTE: woody seems to be still vulnerable
@@ -564,57 +558,57 @@
NOTE: No response from maintainer, I have mailed security team.
NOTE: Martin Schulze don't consider this as an issue for updating woody.
CVE-2002-1375
+ {DSA-212}
- mysql-dfsg 4.0.7.gamma-1
- NOTE: covered by DSA-212
CVE-2002-1374
+ {DSA-212}
- mysql-dfsg 4.0.7.gamma-1
- NOTE: covered by DSA-212
CVE-2002-1373
+ {DSA-212}
- mysql-dfsg 4.0.7.gamma-1
- NOTE: covered by DSA-212
CVE-2002-1372
+ {DSA-232}
- cupsys 1.1.18-1
- NOTE: covered by DSA-232
CVE-2002-1371
+ {DSA-232}
- cupsys 1.1.18-1
- NOTE: covered by DSA-232
CVE-2002-1369
+ {DSA-232}
- cupsys 1.1.18-1
- NOTE: covered by DSA-232
CVE-2002-1367
+ {DSA-232}
- cupsys 1.1.18-1
- NOTE: covered by DSA-232
CVE-2002-1366
+ {DSA-232}
- cupsys 1.1.18-1
- NOTE: covered by DSA-232
CVE-2002-1365
+ {DSA-216}
- fetchmail 6.2.0-1
- NOTE: covered by DSA-216
CVE-2002-1364
+ {DSA-254}
- traceroute-nanog 6.3.0-1
- NOTE: covered by DSA-254
CVE-2002-1363
+ {DSA-213}
- libpng 1.0.12-7
- libpng3 1.2.5-8
- NOTE: covered by DSA-213
CVE-2002-1362
+ {DSA-211}
- micq 0.4.9.4-1
NOTE: micq not in sarge
- NOTE: covered by DSA-211
CVE-2002-1361
NOTE: not-for-us (sun)
CVE-2002-1350
+ {DSA-206}
- tcpdump 3.7.1-1.2
- NOTE: covered by DSA-206
CVE-2002-1349
NOTE: not-for-us (PC-cillin)
CVE-2002-1348
+ {DSA-251 DSA-250 DSA-249}
- w3mmee 0.3.p24.17-3
- NOTE: covered by DSA-249
CVE-2002-1337
+ {DSA-257}
- sendmail 8.13.0.PreAlpha4-0
NOTE: sendmail-wide not in testing/unstable
- NOTE: covered by DSA-257
CVE-2002-1336
- tightvnc 1.2.6-1
CVE-2002-1327
@@ -622,29 +616,29 @@
CVE-2002-1325
NOTE: not-for-us (windows)
CVE-2002-1323
+ {DSA-208}
- perl 5.8.0-14
- NOTE: covered by DSA-208
CVE-2002-1320
NOTE: not-for-us (pine not in Debian)
CVE-2002-1319
NOTE: fixed after 2.4.20 kernel (2.6 not vulnerable)
CVE-2002-1318
+ {DSA-200}
- samba 2.99.cvs.20020713-1
- NOTE: covered by DSA-200
CVE-2002-1317
NOTE: not-for-us (solaris)
CVE-2002-1313
+ {DSA-198}
- nullmailer 1.00RC5-17
- NOTE: covered by DSA-198
CVE-2002-1311
+ {DSA-197}
- courier 0.40.0-1
- NOTE: covered by DSA-197
CVE-2002-1308
- mozilla 2:1.2-1
NOTE: woody is vulnerable see #237422
CVE-2002-1307
+ {DSA-199}
- mhonarc 2.5.13-1
- NOTE: covered by DSA-199
CVE-2002-1296
NOTE: not-for-us (Solaris)
CVE-2002-1284
@@ -652,13 +646,13 @@
CVE-2002-1278
NOTE: Linuxconf not in testing/unstable
CVE-2002-1277
+ {DSA-190}
- wmaker 0.80.1-1
- NOTE: covered by DSA-190
CVE-2002-1272
NOTE: not-for-us (Alcatel)
CVE-2002-1271
+ {DSA-386}
- libmailtools-perl 1.51
- NOTE: covered by DSA-386
CVE-2002-1270
NOTE: not-for-us (Mac OS X)
CVE-2002-1268
@@ -686,15 +680,15 @@
CVE-2002-1252
NOTE: not-for-us (PeopleSoft)
CVE-2002-1251
+ {DSA-186}
- log2mail 0.2.6-1
- NOTE: covered by DSA-186
CVE-2002-1250
NOTE: not-for-us (Abuse 2.00 not in Debian)
CVE-2002-1248
NOTE: not-for-us (Xeneo Web Server)
CVE-2002-1245
+ {DSA-189}
- luxman 0.41-19
- NOTE: covered by DSA-189
CVE-2002-1244
NOTE: not-for-us (Pablo FTP Server)
CVE-2002-1242
@@ -704,15 +698,15 @@
CVE-2002-1236
NOTE: not-for-us (Linksys)
CVE-2002-1232
+ {DSA-180}
- nis 3.9-6.2
- NOTE: covered by DSA-180
CVE-2002-1231
NOTE: not-for-us (SCO)
CVE-2002-1230
NOTE: not-for-us (Windows NT)
CVE-2002-1227
+ {DSA-177}
- pam 0.76-6
- NOTE: covered by DSA-177
CVE-2002-1224
- kdenetwork 4:3.1.0-1
CVE-2002-1223
@@ -720,21 +714,21 @@
CVE-2002-1222
NOTE: not-for-us (CISCO)
CVE-2002-1221
+ {DSA-196}
- bind 8.3.3-3
- NOTE: covered by DSA-196
CVE-2002-1220
+ {DSA-196}
- bind 8.3.3-3
- NOTE: covered by DSA-196
CVE-2002-1219
+ {DSA-196}
- bind 8.3.3-3
- NOTE: covered by DSA-196
CVE-2002-1214
NOTE: not-for-us (Microsoft)
CVE-2002-1211
NOTE: not-for-us (Prometheus not in Debian)
CVE-2002-1200
+ {DSA-175}
- syslog-ng 1.5.21-1
- NOTE: covered by DSA-175
CVE-2002-1199
NOTE: not-for-us (ypxfrd not in Debian)
CVE-2002-1198
@@ -744,15 +738,15 @@
bugzilla 2.16.1-1
NOTE: woody seems to be vulnerable, bug #282501
CVE-2002-1196
+ {DSA-173}
- bugzilla 2.16.0-2.1
- NOTE: covered by DSA-173
CVE-2002-1195
+ {DSA-169}
- php3 3.0.18-23.2
- php4 4.2.3-3
- NOTE: covered by DSA-169
CVE-2002-1193
+ {DSA-172}
NOTE: tkmail not in testing/unstable
- NOTE: covered by DSA-172
CVE-2002-1189
NOTE: not-for-us (CISCO)
CVE-2002-1188
@@ -782,11 +776,11 @@
CVE-2002-1160
NOTE: not-for-us (pam_xauth)
CVE-2002-1159
- NOTE: covered by DSA-224
+ {DSA-224}
CVE-2002-1158
- NOTE: covered by DSA-224
+ {DSA-224}
CVE-2002-1157
- NOTE: covered by DSA-181
+ {DSA-181}
CVE-2002-1156
- apache2 2.0.43
CVE-2002-1154
@@ -796,9 +790,9 @@
CVE-2002-1152
- konqeror 3.03
CVE-2002-1151
- NOTE: covered by DSA-167
+ {DSA-167}
CVE-2002-1148
- NOTE: covered by DSA-170
+ {DSA-170}
CVE-2002-1147
NOTE: not-for-us (HP Procurve 4000M Switch firmware)
CVE-2002-1146
@@ -821,7 +815,7 @@
CVE-2002-1135
NOTE: not-for-us (phpWebSite)
CVE-2002-1132
- NOTE: covered by DSA-191
+ {DSA-191}
CVE-2002-1126
- mozilla 1.2
CVE-2002-1123
@@ -829,19 +823,19 @@
CVE-2002-1122
NOTE: not-for-us (Microsoft)
CVE-2002-1119
- NOTE: covered by DSA-159
+ {DSA-159}
CVE-2002-1118
NOTE: not-for-us (Oracle)
CVE-2002-1117
NOTE: not-for-us (Veritas Backup Exec)
CVE-2002-1116
- NOTE: covered by DSA-161
+ {DSA-161}
CVE-2002-1113
- NOTE: covered by DSA-153
+ {DSA-153}
CVE-2002-1112
- NOTE: covered by DSA-153
+ {DSA-153}
CVE-2002-1111
- NOTE: covered by DSA-153
+ {DSA-153}
CVE-2002-1109
NOTE: old amavis shell script
CVE-2002-1108
@@ -893,11 +887,11 @@
CVE-2002-1053
NOTE: not-for-us (W3C Jigsaw Proxy Server)
CVE-2002-1051
- NOTE: covered by DSA-254
+ {DSA-254}
CVE-2002-1050
- NOTE: covered by DSA-148
+ {DSA-148}
CVE-2002-1049
- NOTE: covered by DSA-148
+ {DSA-148}
CVE-2002-1046
NOTE: not-for-us (Watchguard Firebox firmware)
CVE-2002-1039
@@ -931,23 +925,23 @@
CVE-2002-0990
NOTE: not-for-us (Symantec)
CVE-2002-0989
- NOTE: covered by DSA-158
+ {DSA-158}
CVE-2002-0988
NOTE: not-for-us (Xsco)
CVE-2002-0987
NOTE: not-for-us (Xsco)
CVE-2002-0986
- NOTE: covered by DSA-168
+ {DSA-168}
CVE-2002-0985
- NOTE: covered by DSA-168
+ {DSA-168}
CVE-2002-0984
- NOTE: covered by DSA-156
+ {DSA-156}
CVE-2002-0981
NOTE: not-for-us (ndcfg)
CVE-2002-0974
NOTE: not-for-us (Help and Support Center for Windows XP)
CVE-2002-0970
- NOTE: covered by DSA-155
+ {DSA-155}
CVE-2002-0969
NOTE: mysql problem only affects Windows
CVE-2002-0968
@@ -974,7 +968,7 @@
NOTE: not-for-us (Java on Windows)
CVE-2002-0938
NOTE: not-for-us (Cisco)
-CVE-2002-0935
+CVE-2002-0935
- tomcat4 4.1.9-1
CVE-2002-0916
- squid 2.4.7
@@ -1003,13 +997,13 @@
CVE-2002-0887
NOTE: not-for-us (scoadmin)
CVE-2002-0875
- NOTE: covered by DSA-154
+ {DSA-154}
CVE-2002-0873
- NOTE: covered by DSA-152
+ {DSA-152}
CVE-2002-0872
- NOTE: covered by DSA-152
+ {DSA-152}
CVE-2002-0871
- NOTE: covered by DSA-151
+ {DSA-151}
CVE-2002-0867
NOTE: not-for-us (Microsoft)
CVE-2002-0866
@@ -1033,7 +1027,7 @@
CVE-2002-0848
NOTE: not-for-us (Cisco)
CVE-2002-0847
- NOTE: covered by DSA-145
+ {DSA-145}
CVE-2002-0846
- flashplugin-nonfree 6.0.47
CVE-2002-0845
@@ -1044,9 +1038,9 @@
NOTE: mod_dav for apache not vulnerable according to
NOTE: lists.netsys.com/pipermail/full-disclosure/2003-February/003875.html
CVE-2002-0840
- NOTE: covered by DSA-187
+ {DSA-195 DSA-188 DSA-187}
CVE-2002-0836
- NOTE: covered by DSA-207
+ {DSA-207}
CVE-2002-0835
NOTE: not-for-us (RedHat/Intel PXE daemon)
NOTE: this is not the one in Debian
@@ -1063,9 +1057,9 @@
CVE-2002-0823
NOTE: not-for-us (Windows)
CVE-2002-0818
- NOTE: covered by DSA-144
+ {DSA-144}
CVE-2002-0817
- NOTE: covered by DSA-139
+ {DSA-139}
CVE-2002-0816
NOTE: not-for-us (HP Tru64)
CVE-2002-0814
@@ -1131,7 +1125,7 @@
CVE-2002-0741
NOTE: not-for-us (psyBNC)
CVE-2002-0738
- NOTE: covered by DSA-163
+ {DSA-163}
CVE-2002-0737
NOTE: not-for-us (Sambar web server)
CVE-2002-0736
@@ -1186,7 +1180,7 @@
CVE-2002-0691
NOTE: not-for-us (Microsoft)
CVE-2002-0688
- NOTE: covered by DSA-490
+ {DSA-490}
CVE-2002-0687
- zope 2.5.1b2
CVE-2002-0685
@@ -1214,14 +1208,12 @@
CVE-2002-0663
NOTE: not-for-us (Norton)
CVE-2002-0662
- NOTE: covered by DSA-160
+ {DSA-160}
CVE-2002-0658
- NOTE: covered by DSA-137
+ {DSA-137}
CVE-2002-0653
- NOTE: covered by DSA-135
-
-NOTE: This is apporixmatly where woody was released.
-
+ TODO: check
+STOP: This is apporixmatly where woody was released.
CVE-2002-0651
CVE-2002-0650
CVE-2002-0648
@@ -1294,7 +1286,7 @@
CVE-2002-0435
CVE-2002-0431
CVE-2002-0429
- NOTE: covered by DSA-311
+ {DSA-442 DSA-336 DSA-332 DSA-312 DSA-311}
CVE-2002-0425
CVE-2002-0424
CVE-2002-0423
@@ -1313,14 +1305,14 @@
CVE-2002-0394
CVE-2002-0392
CVE-2002-0391
- NOTE: covered by DSA-142
+ {DSA-333 DSA-149 DSA-146 DSA-143 DSA-142}
CVE-2002-0389
CVE-2002-0387
CVE-2002-0384
CVE-2002-0382
CVE-2002-0381
CVE-2002-0380
- NOTE: covered by DSA-255
+ {DSA-255}
CVE-2002-0379
CVE-2002-0377
CVE-2002-0376
@@ -2973,7 +2965,7 @@
CVE-1999-1335
CVE-1999-1333
CVE-1999-1332
- NOTE: covered by DSA-308
+ {DSA-308}
CVE-1999-1331
CVE-1999-1330
CVE-1999-1329
@@ -3104,7 +3096,7 @@
CVE-1999-0999
CVE-1999-0998
CVE-1999-0997
- NOTE: covered by DSA-377
+ {DSA-377}
CVE-1999-0996
CVE-1999-0995
CVE-1999-0994
@@ -3330,7 +3322,7 @@
CVE-1999-0713
CVE-1999-0711
CVE-1999-0710
- NOTE: covered by DSA-576-1
+ {DSA-576-1}
CVE-1999-0708
CVE-1999-0707
CVE-1999-0706