[Secure-testing-commits] r7751 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Sat Dec 29 02:38:32 UTC 2007 

Author: nion
Date: 2007-12-29 02:38:31 +0000 (Sat, 29 Dec 2007)
New Revision: 7751

Modified:
   data/CVE/list
Log:
NFUs
CVE-2007-6538 does not affect moodle
tikiwiki was removed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-12-29 02:14:41 UTC (rev 7750)
+++ data/CVE/list	2007-12-29 02:38:31 UTC (rev 7751)
@@ -5,79 +5,79 @@
 CVE-2007-6562 (Multiple stack-based buffer overflows in the use of FD_SET in TCPreen ...)
 	- tcpreen 1.4.3-0.3 (medium; bug #457781)
 CVE-2007-6561 (Multiple stack-based buffer overflows in PDFLib allow user-assisted ...)
-	TODO: check
+	NOT-FOR-US: PDFLib
 CVE-2007-6560 (Multiple cross-site scripting (XSS) vulnerabilities in Logaholic allow ...)
-	TODO: check
+	NOT-FOR-US: Logaholic
 CVE-2007-6559 (Multiple SQL injection vulnerabilities in Logaholic allow remote ...)
-	TODO: check
+	NOT-FOR-US: Logaholic
 CVE-2007-6558 (TotalPlayer 3.0 allows user-assisted remote attackers to cause a ...)
-	TODO: check
+	NOT-FOR-US: TotalPlayer
 CVE-2007-6557 (Multiple SQL injection vulnerabilities in MeGaCheatZ 1.1 allow remote ...)
-	TODO: check
+	NOT-FOR-US: MeGaCheatZ
 CVE-2007-6556 (Multiple SQL injection vulnerabilities in websihirbazi 5.1.1 allow ...)
-	TODO: check
+	NOT-FOR-US: websihirbazi
 CVE-2007-6555 (PHP remote file inclusion vulnerability in modules/mod_pxt_latest.php ...)
-	TODO: check
+	NOT-FOR-US: Joomla! extension
 CVE-2007-6554 (Multiple directory traversal vulnerabilities in TeamCal Pro 3.1.000 ...)
-	TODO: check
+	NOT-FOR-US: TeamCal
 CVE-2007-6553 (Multiple PHP remote file inclusion vulnerabilities in TeamCal Pro ...)
-	TODO: check
+	NOT-FOR-US: TeamCal
 CVE-2007-6552 (Directory traversal vulnerability in index.php in AuraCMS 2.2 allows ...)
-	TODO: check
+	NOT-FOR-US: AuraCMS
 CVE-2007-6551 (SQL injection vulnerability in showMsg.php in MailMachine Pro 2.2.4 ...)
-	TODO: check
+	NOT-FOR-US: MailMachine
 CVE-2007-6550 (form.php in PMOS Help Desk 2.4 and earlier sends a redirect to the web ...)
-	TODO: check
+	NOT-FOR-US: PMOS Help Desk
 CVE-2007-6549 (Unspecified vulnerability in RunCMS before 1.6.1 has unknown impact ...)
-	TODO: check
+	NOT-FOR-US: RunCMS
 CVE-2007-6548 (Multiple direct static code injection vulnerabilities in RunCMS before ...)
-	TODO: check
+	NOT-FOR-US: RunCMS
 CVE-2007-6547 (RunCMS before 1.6.1 does not require entry of the old password during ...)
-	TODO: check
+	NOT-FOR-US: RunCMS
 CVE-2007-6546 (RunCMS before 1.6.1 uses a predictable session id, which makes it ...)
-	TODO: check
+	NOT-FOR-US: RunCMS
 CVE-2007-6545 (Multiple cross-site scripting (XSS) vulnerabilities in RunCMS before ...)
-	TODO: check
+	NOT-FOR-US: RunCMS
 CVE-2007-6544 (Multiple SQL injection vulnerabilities in RunCMS before 1.6.1 allow ...)
-	TODO: check
+	NOT-FOR-US: RunCMS
 CVE-2007-6543 (SQL injection vulnerability in suggest-link.php in eSyndiCat Link ...)
-	TODO: check
+	NOT-FOR-US: eSyndiCat Link Exchange Script
 CVE-2007-6542 (PHP remote file inclusion vulnerability in admin/frontpage_right.php ...)
-	TODO: check
+	NOT-FOR-US: Arcadem LEArcadem LE
 CVE-2007-6541 (Multiple cross-site scripting (XSS) vulnerabilities in neuron news 1.0 ...)
-	TODO: check
+	NOT-FOR-US: neuron news
 CVE-2007-6540 (SQL injection vulnerability in neuron news 1.0 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: neuron news
 CVE-2007-6539 (PHP local file inclusion vulnerability in index.php in IDevspot ...)
-	TODO: check
+	NOT-FOR-US: IDevspot iSupport
 CVE-2007-6538 (SQL injection vulnerability in ing/blocks/mrbs/code/web/view_entry.php ...)
-	TODO: check
+	- moodle <not-affected> (Vulnerable code not present, third party module)
 CVE-2007-6537 (Stack-based buffer overflow in the zfile_gunzip function in zfile.c in ...)
-	TODO: check
+	NOT-FOR-US: WinUAE
 CVE-2007-6536 (The Custom Button Installer dialog in Google Toolbar 4 and 5 beta ...)
 	TODO: check
 CVE-2007-6535 (Buffer overflow in the YShortcut ActiveX control in YShortcut.dll ...)
-	TODO: check
+	NOT-FOR-US: YShortcut ActiveX control
 CVE-2007-6534 (Multiple unspecified vulnerabilities in Microsoft Office Publisher ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Publisher
 CVE-2007-6533 (Buffer overflow in Zoom Player 6.00 beta 2 and earlier allows ...)
-	TODO: check
+	NOT-FOR-US: Zoom Player
 CVE-2007-6532
 	RESERVED
 CVE-2007-6531
 	RESERVED
 CVE-2007-6530 (Buffer overflow in the XUpload.ocx ActiveX control in Persits Software ...)
-	TODO: check
+	NOT-FOR-US: XUpload
 CVE-2007-6529 (Multiple unspecified vulnerabilities in TikiWiki before 1.9.9 have ...)
-	TODO: check
+	- tikiwiki <removed>
 CVE-2007-6528 (Directory traversal vulnerability in tiki-listmovies.php in TikiWiki ...)
-	TODO: check
+	- tikiwiki <removed>
 CVE-2007-6527 (uploadimg.php in the Automatic Image Upload with Thumbnails ...)
 	TODO: check
 CVE-2007-6526 (Cross-site scripting (XSS) vulnerability in tiki-special_chars.php in ...)
-	TODO: check
+	- tikiwiki <removed>
 CVE-2007-6525 (Unspecified vulnerability in eClient in IBM DB2 Content Manager (CM) ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2 Content Manager
 CVE-2007-6524 (Opera before 9.25 allows remote attackers to obtain potentially ...)
 	NOT-FOR-US: Opera
 CVE-2007-6523 (Algorithmic complexity vulnerability in Opera 9.50 beta and 9.x before ...)

More information about the Secure-testing-commits mailing list