[Secure-testing-commits] r5087 - data/CVE

Luk Claes luk at alioth.debian.org
Thu Dec 7 21:54:34 CET 2006 

Author: luk
Date: 2006-12-07 21:54:32 +0100 (Thu, 07 Dec 2006)
New Revision: 5087

Modified:
   data/CVE/list
Log:
Processed some TODOs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-12-07 20:21:23 UTC (rev 5086)
+++ data/CVE/list	2006-12-07 20:54:32 UTC (rev 5087)
@@ -388,11 +388,11 @@
 CVE-2006-6181 (Multiple SQL injection vulnerabilities in default.asp in ClickTech ...)
 	TODO: check
 CVE-2006-6180 (Cross-site scripting (XSS) vulnerability in articles.asp in ...)
-	TODO: check
+	NOT-FOR-US: iNews Publisher
 CVE-2006-6179 (Buffer overflow in ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro OfficeScan
 CVE-2006-6178 (Buffer overflow in PCCSRV\Web_console\RemoteInstallCGI\Wizard.exe for ...)
-	TODO: check
+	NOT-FOR-US: Trend Micro OfficeScan
 CVE-1999-1590 (Directory traversal vulnerability in Muhammad A. Muquit wwwcount ...)
 	TODO: check
 CVE-2006-XXXX [libxslt segfault / DoS]
@@ -546,7 +546,7 @@
 CVE-2006-6113 (Monkey Boards 0.3.5 allows remote attackers to obtain sensitive ...)
 	NOT-FOR-US: Monkey Boards
 CVE-2006-6112 (LifeType 1.0.x and 1.1.x have insufficient access control for all of the PHP ...)
-	TODO: check
+	NOT-FOR-US: LifeType
 CVE-2006-6111 (Multiple SQL injection vulnerabilities in Alan Ward A-Cart Pro 2.0 ...)
 	NOT-FOR-US: Alan Ward A-Cart Pro
 CVE-2006-6110 (Multiple SQL injection vulnerabilities in an unspecified BPG-InfoTech ...)
@@ -789,7 +789,7 @@
 CVE-2006-5995
 	RESERVED
 CVE-2006-5994 (Unspecified vulnerability in Microsoft Word 2000 and 2002, Office Word ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Word
 CVE-2006-5993
 	RESERVED
 CVE-2006-5992
@@ -1021,7 +1021,7 @@
 CVE-2006-5885 (SQL injection vulnerability in Products.asp in NuStore 1.0 allows ...)
 	NOT-FOR-US: NuStore
 CVE-2003-1308 (CRLF injection vulnerability in fvwm-menu-directory for fvwm 2.5.x ...)
-	TODO: check
+	- fvwm 2.5.10-1
 CVE-2006-XXXX [chetcpasswd multiple vulnerabilities]
 	- chetcpasswd <unfixed> (bug #394454)
 	NOTE: I've filed a removal bug, this doesn't have a security perspective
@@ -1462,7 +1462,7 @@
 CVE-2006-5681
 	RESERVED
 CVE-2006-5680 (The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before ...)
-	TODO: check
+	TODO: check libarchive
 CVE-2006-5679 (Integer overflow in the ffs_mountfs function in FreeBSD 6.1 allows ...)
 	- kfreebsd-5 <unfixed>
 	[etch] - kfreebsd-5 <no-dsa> (no security support for freebsd)

More information about the Secure-testing-commits mailing list