[Secure-testing-commits] r6412 - data/CVE
thijs at alioth.debian.org
thijs at alioth.debian.org
Mon Aug 27 11:08:59 UTC 2007
Author: thijs
Date: 2007-08-27 11:08:58 +0000 (Mon, 27 Aug 2007)
New Revision: 6412
Modified:
data/CVE/list
Log:
old pam issue fixed in recent upload
correct one NFU
10 NFU's
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-08-26 20:06:14 UTC (rev 6411)
+++ data/CVE/list 2007-08-27 11:08:58 UTC (rev 6412)
@@ -81,25 +81,25 @@
CVE-2007-4427 (Unspecified vulnerability in the login page redirection logic in the ...)
NOT-FOR-US: InterSystems Cache
CVE-2007-4426 (Live for Speed (LFS) S1 and S2 allows remote attackers to cause a ...)
- TODO: check
+ NOT-FOR-US: Live for Speed
CVE-2007-4425 (Multiple buffer overflows in Live for Speed (LFS) demo, S1, and S2 ...)
- TODO: check
+ NOT-FOR-US: Live for Speed
CVE-2007-4424 (Apple Safari for Windows 3.0.3 and earlier does not prompt the user ...)
- NOT-FOR-US: Skype
+ NOT-FOR-US: Safari
CVE-2007-4423 (Unspecified vulnerability in the AUTH_LIST_GROUPS_FOR_AUTHID function ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2007-4422 (The login interface in Symantec Enterprise Firewall 6.x, when a VPN ...)
- TODO: check
+ NOT-FOR-US: Symantec Enterprise Firewall
CVE-2007-4421 (SQL injection vulnerability in Admin.php in Olate Download (od) 3.4.1 ...)
- TODO: check
+ NOT-FOR-US: Olate Download
CVE-2007-4420 (Absolute path traversal vulnerability in a certain ActiveX control in ...)
- TODO: check
+ NOT-FOR-US: EDraw Office Viewer Component
CVE-2007-4419 (Admin.php in Olate Download (od) 3.4.1 uses an MD5 hash of the admin ...)
- TODO: check
+ NOT-FOR-US: Olate Download
CVE-2007-4418 (IBM DB2 UDB 8 before Fixpak 15 does not properly check authorization, ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2007-4417 (IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 does not ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2007-4416 (** DISPUTED ** ...)
TODO: check
CVE-2007-4415 (Cisco VPN Client on Windows before 5.0.01.0600, and the 5.0.01.0600 ...)
@@ -109,7 +109,7 @@
CVE-2007-4413 (Direct static code injection vulnerability in admincp/user_help.php in ...)
NOT-FOR-US: Headstart Solutions DeskPRO 3.0.2
CVE-2007-4412 (Multiple cross-site scripting (XSS) vulnerabilities in Headstart ...)
- TODO: check
+ NOT-FOR-US: Deskpro
CVE-2007-4411 (ircu 2.10.12.05 and earlier allows remote attackers to discover the ...)
- ircd-ircu <unfixed> (bug #439314)
CVE-2007-4410 (ircu 2.10.12.05 and earlier does not properly synchronize a kick ...)
@@ -31769,7 +31769,7 @@
{DSA-878-1}
- netpbm-free 2:10.0-10
CVE-2005-2977 (The SELinux version of PAM before 0.78 r3 allows local users to ...)
- - pam <unfixed> (bug #336344; low)
+ - pam 0.99.7.1-2 (bug #336344; low)
[sarge] - pam <not-affected> (Does not contain SELinux support)
[woody] - pam <not-affected> (Does not contain SELinux support)
CVE-2005-2976 (Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before 2.8.7 ...)
More information about the Secure-testing-commits
mailing list