[Secure-testing-commits] r6412 - data/CVE

thijs at alioth.debian.org thijs at alioth.debian.org
Mon Aug 27 11:08:59 UTC 2007


Author: thijs
Date: 2007-08-27 11:08:58 +0000 (Mon, 27 Aug 2007)
New Revision: 6412

Modified:
   data/CVE/list
Log:
old pam issue fixed in recent upload
correct one NFU
10 NFU's


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-08-26 20:06:14 UTC (rev 6411)
+++ data/CVE/list	2007-08-27 11:08:58 UTC (rev 6412)
@@ -81,25 +81,25 @@
 CVE-2007-4427 (Unspecified vulnerability in the login page redirection logic in the ...)
 	NOT-FOR-US: InterSystems Cache
 CVE-2007-4426 (Live for Speed (LFS) S1 and S2 allows remote attackers to cause a ...)
-	TODO: check
+	NOT-FOR-US: Live for Speed
 CVE-2007-4425 (Multiple buffer overflows in Live for Speed (LFS) demo, S1, and S2 ...)
-	TODO: check
+	NOT-FOR-US: Live for Speed
 CVE-2007-4424 (Apple Safari for Windows 3.0.3 and earlier does not prompt the user ...)
-	NOT-FOR-US: Skype
+	NOT-FOR-US: Safari
 CVE-2007-4423 (Unspecified vulnerability in the AUTH_LIST_GROUPS_FOR_AUTHID function ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2007-4422 (The login interface in Symantec Enterprise Firewall 6.x, when a VPN ...)
-	TODO: check
+	NOT-FOR-US: Symantec Enterprise Firewall
 CVE-2007-4421 (SQL injection vulnerability in Admin.php in Olate Download (od) 3.4.1 ...)
-	TODO: check
+	NOT-FOR-US: Olate Download
 CVE-2007-4420 (Absolute path traversal vulnerability in a certain ActiveX control in ...)
-	TODO: check
+	NOT-FOR-US: EDraw Office Viewer Component
 CVE-2007-4419 (Admin.php in Olate Download (od) 3.4.1 uses an MD5 hash of the admin ...)
-	TODO: check
+	NOT-FOR-US: Olate Download
 CVE-2007-4418 (IBM DB2 UDB 8 before Fixpak 15 does not properly check authorization, ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2007-4417 (IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 does not ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2007-4416 (** DISPUTED ** ...)
 	TODO: check
 CVE-2007-4415 (Cisco VPN Client on Windows before 5.0.01.0600, and the 5.0.01.0600 ...)
@@ -109,7 +109,7 @@
 CVE-2007-4413 (Direct static code injection vulnerability in admincp/user_help.php in ...)
 	NOT-FOR-US: Headstart Solutions DeskPRO 3.0.2
 CVE-2007-4412 (Multiple cross-site scripting (XSS) vulnerabilities in Headstart ...)
-	TODO: check
+	NOT-FOR-US: Deskpro
 CVE-2007-4411 (ircu 2.10.12.05 and earlier allows remote attackers to discover the ...)
 	- ircd-ircu <unfixed> (bug #439314)
 CVE-2007-4410 (ircu 2.10.12.05 and earlier does not properly synchronize a kick ...)
@@ -31769,7 +31769,7 @@
 	{DSA-878-1}
 	- netpbm-free 2:10.0-10
 CVE-2005-2977 (The SELinux version of PAM before 0.78 r3 allows local users to ...)
-	- pam <unfixed> (bug #336344; low)
+	- pam 0.99.7.1-2 (bug #336344; low)
 	[sarge] - pam <not-affected> (Does not contain SELinux support)
 	[woody] - pam <not-affected> (Does not contain SELinux support)
 CVE-2005-2976 (Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before 2.8.7 ...)




More information about the Secure-testing-commits mailing list