[Secure-testing-commits] r4015 - data/CVE

Alec Berryman alec-guest at costa.debian.org
Sat May 20 22:40:23 UTC 2006


Author: alec-guest
Date: 2006-05-20 22:40:18 +0000 (Sat, 20 May 2006)
New Revision: 4015

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-05-20 22:23:56 UTC (rev 4014)
+++ data/CVE/list	2006-05-20 22:40:18 UTC (rev 4015)
@@ -256,15 +256,15 @@
 CVE-2006-2364 (Cross-site scripting (XSS) vulnerability in the validation feature in ...)
 	NOT-FOR-US: Macromedia
 CVE-2006-2363 (SQL injection vulnerability in the weblinks option (weblinks.html.php) ...)
-	TODO: check
+	NOT-FOR-US: Limbo
 CVE-2006-2362 (Buffer overflow in getsym in tekhex.c in libbfd in Free Software ...)
 	- binutils <unfixed> (bug #368237)
 CVE-2006-2361 (PHP remote file inclusion vulnerability in pafiledb_constants.php in ...)
-	TODO: check
+	NOT-FOR-US: phpbb mod
 CVE-2006-2360 (SQL injection vulnerability in charts.php in the Chart mod for phpBB ...)
-	TODO: check
+	NOT-FOR-US: phpbb mod
 CVE-2006-2359 (Cross-site scripting (XSS) vulnerability in charts.php in the Chart ...)
-	TODO: check
+	NOT-FOR-US: phpbb mod
 CVE-2006-2192
 	RESERVED
 CVE-2005-4803 (graphviz before 2.2.1 allows local users to overwrite arbitrary files ...)
@@ -374,7 +374,7 @@
 CVE-2006-2313
 	RESERVED
 CVE-2006-2312 (Unspecified vulnerability in the URI handler in Skype 2.0.*.104 and ...)
-	TODO: check
+	NOT-FOR-US: Skype
 CVE-2006-2311
 	RESERVED
 CVE-2006-2310
@@ -750,9 +750,9 @@
 CVE-2006-2136 (SQL injection vulnerability in news.php in AZNEWS allows remote ...)
 	NOT-FOR-US: AZNEWS
 CVE-2006-2135 (SQL injection vulnerability in login.php in Ruperts News allows remote ...)
-	TODO: check
+	NOT-FOR-US: Ruperts News
 CVE-2006-2134 (PHP remote file inclusion vulnerability in /includes/kb_constants.php ...)
-	TODO: check
+	NOT-FOR-US: phpbb2 mod
 CVE-2005-4794 (Cisco IP Phones 7902/7905/7912, ATA 186/188, Unity Express, ACNS, and ...)
 	NOT-FOR-US: Cisco
 CVE-2006-2148 (Multiple buffer overflows in client.c in CGI:IRC (CGIIRC) before 0.5.8 ...)
@@ -760,7 +760,7 @@
 	- cgiirc <unfixed> (bug #365680; medium)
 	[sarge] - cgiirc 0.5.4-6sarge1 (bug #365680; medium)
 CVE-2006-2133 (SQL injection vulnerability in index.php in BoonEx Barracuda 1.1 and ...)
-	TODO: check
+	NOT-FOR-US: BoonEx Barracuda
 CVE-2006-2132 (SQL injection vulnerability in detail.asp in DUclassified allows ...)
 	NOT-FOR-US: DUclassified
 CVE-2006-2131 (include/class_poll.php in Advanced Poll 2.0.4 uses the ...)
@@ -783,23 +783,23 @@
 CVE-2006-2123 (Multiple SQL injection vulnerabilities in the report interface in ...)
 	NOT-FOR-US: Network Administration Visualiazed
 CVE-2006-2122 (PHP remote file inclusion vulnerability in index.php in CoolMenus allows ...)
-	TODO: check
+	NOT-FOR-US: CoolMenus
 CVE-2006-2121 (PHP remote file include vulnerability in admin/config_settings.tpl.php ...)
-	TODO: check
+	NOT-FOR-US: I-RATER Platinum
 CVE-2006-2120 (The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers ...)
 	- tiff 3.8.1 (bug #366588; medium)
 CVE-2006-2119 (PHP remote file inclusion vulnerability in event/index.php in Artmedic ...)
-	TODO: check
+	NOT-FOR-US: Artmedic
 CVE-2006-2118 (JMK's Picture Gallery allows remote attackers to bypass authentication ...)
-	TODO: check
+	NOT-FOR-US: JMK
 CVE-2006-2117 (Cross-site scripting (XSS) vulnerability in Thyme 1.3 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Thyme
 CVE-2006-2116 (planetGallery allows remote attackers to gain administrator privileges ...)
-	TODO: check
+	NOT-FOR-US: planetGallery
 CVE-2006-2115 (Format string vulnerability in SWS web Server 0.1.7 allows remote ...)
-	TODO: check
+	NOT-FOR-US: SWS
 CVE-2006-2114 (Buffer overflow in SWS web Server 0.1.7 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: SWS
 CVE-2006-2113
 	RESERVED
 CVE-2006-2112




More information about the Secure-testing-commits mailing list