[Secure-testing-commits] r5044 - data/CVE

Stefan Fritsch stef-guest at alioth.debian.org
Sat Dec 2 00:11:22 CET 2006 

Author: stef-guest
Date: 2006-12-02 00:11:20 +0100 (Sat, 02 Dec 2006)
New Revision: 5044

Modified:
   data/CVE/list
Log:
remove some more obsolete TODOs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-12-01 23:03:20 UTC (rev 5043)
+++ data/CVE/list	2006-12-01 23:11:20 UTC (rev 5044)
@@ -34123,14 +34123,12 @@
 CVE-2003-0695 (Multiple "buffer management errors" in OpenSSH before 3.7.1 may allow ...)
 	{DSA-383 DSA-382}
 	- openssh 1:3.7.1
-	TODO: openssh-krb5: Screwy changelog does not make sense (bug #264717).
 CVE-2003-0694 (The prescan function in Sendmail 8.12.9 allows remote attackers to ...)
 	{DSA-384}
 	- sendmail 8.12.10-1
 CVE-2003-0693 (A "buffer management error" in buffer_append_space of buffer.c for ...)
 	{DSA-383 DSA-382}
 	- openssh 1:3.6.1p2-6.0
-	TODO: openssh-krb5: Screwy changelog does not make sense (bug #264717).
 CVE-2003-0692 (KDM in KDE 3.1.3 and earlier uses a weak session cookie generation ...)
 	{DSA-388}
 	- kdebase 4:3.2
@@ -36798,7 +36796,6 @@
 	NOT-FOR-US: realsecure/blackice
 CVE-2004-0191 (Mozilla before 1.4.2 executes Javascript events in the context of a ...)
 	- mozilla-browser 2:1.7.3
-	TODO: test
 CVE-2004-0190 (Symantec FireWall/VPN Appliance model 200 records a cleartext ...)
 	NOT-FOR-US: symantec
 CVE-2004-0189 (The "%xx" URL decoding function in Squid 2.5STABLE4 and earlier allows ...)
@@ -36876,12 +36873,10 @@
 	NOT-FOR-US: os x
 CVE-2004-0082 (The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and ...)
 	- samba 3.0.7
-	TODO: test
 CVE-2004-0080 (The login program in util-linux 2.11 and earlier uses a pointer after ...)
 	NOT-FOR-US: debian uses different login
 CVE-2004-0078 (Buffer overflow in the index menu code (menu_pad_string of menu.c) for ...)
 	- mutt 1.5.6-20040722+1
-	TODO: test
 CVE-2004-0077 (The do_mremap function for the mremap system call in Linux 2.2 to ...)
 	{DSA-514 DSA-475 DSA-470 DSA-466 DSA-456 DSA-454 DSA-453 DSA-450 DSA-444 DSA-442 DSA-441 DSA-440 DSA-439 DSA-438}
 	- kernel-source-2.4.27 <not-affected> (Fixed before initial upload; 2.4.26-pre3)
@@ -36889,7 +36884,6 @@
 CVE-2004-0075 (The Vicam USB driver in Linux before 2.4.25 does not use the ...)
 	- kernel-source-2.4.24 2.4.24-3
 	NOTE: fixed in 2.4.26-pre3
-	TODO: test
 CVE-2004-0070 (PHP remote file inclusion vulnerability in module.php for ezContents ...)
 	NOT-FOR-US: ezcontents, commercial
 CVE-2004-0068 (PHP remote file inclusion vulnerability in config.php for PhpDig 1.6.5 ...)
@@ -36932,7 +36926,6 @@
 	- fsp 2.81.b18-1
 CVE-2004-0009 (Apache-SSL 1.3.28+1.52 and earlier, with SSLVerifyClient set to 1 or 3 ...)
 	- apache-ssl 1.3.31
-	TODO: test
 CVE-2004-0004 (The libCheckSignature function in crypto-utils.lib for OpenCA 0.9.1.6 ...)
 	NOT-FOR-US: openca, not in debian
 CVE-2004-0001 (Unknown vulnerability in the eflags checking in the 32-bit ptrace ...)

More information about the Secure-testing-commits mailing list