[Secure-testing-commits] r4931 - data/CVE
Stefan Fritsch
stef-guest at alioth.debian.org
Tue Nov 7 21:31:32 CET 2006
Author: stef-guest
Date: 2006-11-07 21:31:31 +0100 (Tue, 07 Nov 2006)
New Revision: 4931
Modified:
data/CVE/list
Log:
a few ITPs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-11-07 20:14:37 UTC (rev 4930)
+++ data/CVE/list 2006-11-07 20:31:31 UTC (rev 4931)
@@ -773,7 +773,7 @@
CVE-2006-5403 (Stack-based buffer overflow in an ActiveX control used in Symantec ...)
NOT-FOR-US: Symantec
CVE-2006-5402 (Multiple PHP remote file inclusion vulnerabilities in PHPmybibli 3.0.1 ...)
- NOT-FOR-US: PHPmybibli
+ - phpmybibli <itp> (bug #369328)
CVE-2006-5401 (PHP remote file inclusion vulnerability in ...)
NOT-FOR-US: AROUNDMe
CVE-2006-5400 (PHP remote file inclusion vulnerability in forum/track.php in ...)
@@ -1164,7 +1164,7 @@
CVE-2006-5217 (SQL injection vulnerability in giris_yap.asp in Emek Portal 2.1 allows ...)
NOT-FOR-US: Emek Portal
CVE-2006-5216 (Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) ...)
- NOT-FOR-US: Simple HTTPD (shttpd)
+ - shttpd <itp> (bug #341284)
CVE-2006-5215 (The Xsession script, as used by X Display Manager (xdm) in NetBSD ...)
- xdm 1:1.0.5-1 (low)
[sarge] - xfree86 <unfixed> (low)
@@ -4987,11 +4987,11 @@
CVE-2006-3534 (Directory traversal vulnerability in Nullsoft SHOUTcast DSP before ...)
NOT-FOR-US: Nullsoft SHOUTcast DSP
CVE-2006-3533 (Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.30 RC2 ...)
- NOT-FOR-US: Pivot
+ - pivot <itp> (bug #305786)
CVE-2006-3532 (PHP file inclusion vulnerability in includes/edit_new.php in Pivot ...)
- NOT-FOR-US: Pivot
+ - pivot <itp> (bug #305786)
CVE-2006-3531 (includes/editor/insert_image.php in Pivot 1.30 RC2 and earlier creates ...)
- NOT-FOR-US: Pivot
+ - pivot <itp> (bug #305786)
CVE-2006-3530 (PHP remote file inclusion vulnerability in ...)
NOT-FOR-US: PccookBook Component for Mambo and Joomla
CVE-2003-1304 (EarlyImpact ProductCart 1.0 through 2.0 stores database/EIPC.mdb under ...)
@@ -7195,8 +7195,7 @@
CVE-2006-2558 (Cross-site scripting (XSS) vulnerability in IpLogger 1.7 and earlier ...)
NOT-FOR-US: IpLogger
CVE-2006-2557 (PHP remote file inclusion vulnerability in extras/poll/poll.php in ...)
- NOT-FOR-US: newsportal
- NOTE: RFP #149069 closed after no activity since too long time
+ - newsportal <itp> (bug #149069)
CVE-2006-2556 (Cross-site scripting (XSS) vulnerability in Florian Amrhein NewsPortal ...)
NOT-FOR-US: newsportal
NOTE: RFP #149069 closed after no activity since too long time
@@ -8190,7 +8189,7 @@
CVE-2006-2118 (JMK's Picture Gallery allows remote attackers to bypass authentication ...)
NOT-FOR-US: JMK
CVE-2006-2117 (Cross-site scripting (XSS) vulnerability in Thyme 1.3 allows remote ...)
- NOT-FOR-US: Thyme
+ - thyme <itp> (bug #361599)
CVE-2006-2116 (planetGallery allows remote attackers to gain administrator privileges ...)
NOT-FOR-US: planetGallery
CVE-2006-2115 (Format string vulnerability in SWS web Server 0.1.7 allows remote ...)
@@ -29876,7 +29875,7 @@
CVE-2004-1114 (Buffer overflow in the handling of command line arguments in Skype ...)
NOT-FOR-US: Skype
CVE-2004-1113 (SQL injection vulnerability in SQLgrey Postfix greylisting service ...)
- NOT-FOR-US: SQLgrey Postfix greylisting serivce
+ - sqlgrey <itp> (bug #389472)
CVE-2004-1112 (The buffer overflow trigger in Cisco Security Agent (CSA) before 4.0.3 ...)
NOT-FOR-US: Cisco
CVE-2004-1111 (Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, ...)
More information about the Secure-testing-commits
mailing list