[Secure-testing-commits] r7459 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sat Dec 1 15:07:50 UTC 2007
Author: nion
Date: 2007-12-01 15:07:49 +0000 (Sat, 01 Dec 2007)
New Revision: 7459
Modified:
data/CVE/list
Log:
NFUs
CVE-2007-6063 unfixed, kernel-sec
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-12-01 14:59:22 UTC (rev 7458)
+++ data/CVE/list 2007-12-01 15:07:49 UTC (rev 7459)
@@ -125,7 +125,7 @@
CVE-2007-6134 (SQL injection vulnerability in pkinc/public/article.php in PHPKIT ...)
NOT-FOR-US: PHPKIT
CVE-2007-6133 (PHP remote file inclusion vulnerability in admin/kfm/initialise.php in ...)
- TODO: check
+ NOT-FOR-US: DevMass Shopping Cart
CVE-2007-XXXX [zabbix-agent runs as gid 0]
- zabbix <unfixed> (bug #452682)
CVE-2007-6183 (Format string vulnerability in the mdiag_initialize function in ...)
@@ -257,7 +257,8 @@
CVE-2007-6064
RESERVED
CVE-2007-6063 (Buffer overflow in the isdn_net_setcfg function in isdn_net.c in Linux ...)
- TODO: check kernel (kernel sec team)
+ - linux-2.6 <unfixed>
+ NOTE: kernel-sec is aware of this
CVE-2007-6062 (irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause ...)
- ngircd 0.10.3-1
[etch] - ngircd <no-dsa> (Minor issue)
@@ -4414,7 +4415,7 @@
CVE-2007-4675 (Heap-based buffer overflow in the QuickTime VR extension 7.2.0.240 in ...)
NOT-FOR-US: Apple QuickTime
CVE-2007-4674 (An "integer arithmetic" error in Apple QuickTime 7.2 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2007-4673 (Argument injection vulnerability in Apple QuickTime 7.2 for Windows XP ...)
NOT-FOR-US: Apple QuickTime
CVE-2007-4672 (Stack-based buffer overflow in Apple QuickTime before 7.3 allows ...)
@@ -5224,9 +5225,9 @@
CVE-2007-4348 (Cross-site scripting (XSS) vulnerability in the CAD service in IBM ...)
NOT-FOR-US: IBM Tivoli Storage Manager
CVE-2007-4347 (Multiple integer overflows in the Job Engine (bengine.exe) service in ...)
- TODO: check
+ NOT-FOR-US: Job Engine
CVE-2007-4346 (The Job Engine (bengine.exe) service in Symantec Backup Exec for ...)
- TODO: check
+ NOT-FOR-US: Job Engine
CVE-2007-4345 (Buffer overflow in IMail Client 9.22, as shipped with IPSwitch IMail ...)
NOT-FOR-US: IMail Client
CVE-2007-4344 (Multiple input validation errors in ACD ACDSee Photo Manager 9.0 build ...)
More information about the Secure-testing-commits
mailing list