[Secure-testing-commits] r4137 - data/CVE
SALVETTI Djoumé
djoume-guest at costa.debian.org
Sun Jun 4 12:15:59 UTC 2006
Author: djoume-guest
Date: 2006-06-04 12:15:56 +0000 (Sun, 04 Jun 2006)
New Revision: 4137
Modified:
data/CVE/list
Log:
* NFUs
* gforge issue already fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-06-04 09:56:14 UTC (rev 4136)
+++ data/CVE/list 2006-06-04 12:15:56 UTC (rev 4137)
@@ -353,11 +353,14 @@
CVE-2005-1755 (PHP remote code injection vulnerability in poll_vote.php in PHP Poll ...)
NOT-FOR-US: PHP Poll Creator
CVE-2005-1754 (JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, ...)
- TODO: check
+ NOT-FOR-US: JavaMail API
+ NOTE: vulnerable file not in Debian
CVE-2005-1753 (ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache ...)
- TODO: check
+ NOT-FOR-US: JavaMail API
+ NOTE: vulnerable file not in Debian
CVE-2005-1752 (viewFile.php in the scm component of Gforge before 4.0 allows remote ...)
- TODO: check
+ - gforge 3.1-30
+ NOTE: viewFile.php disabled in 3.1-30
CVE-2006-2492 (Buffer overflow in Microsoft Word XP and Word 2003 allows ...)
NOT-FOR-US: Microsoft
CVE-2006-2491 (Cross-site scripting (XSS) vulnerability in (1) index.php and (2) ...)
More information about the Secure-testing-commits
mailing list