[Secure-testing-commits] r5412 - data/CVE

Alex de Oliveira Silva enerv-guest at alioth.debian.org
Sun Feb 4 22:31:57 CET 2007


Author: enerv-guest
Date: 2007-02-04 22:31:55 +0100 (Sun, 04 Feb 2007)
New Revision: 5412

Modified:
   data/CVE/list
Log:
fixups.



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-02-04 21:24:11 UTC (rev 5411)
+++ data/CVE/list	2007-02-04 21:31:55 UTC (rev 5412)
@@ -20,7 +20,8 @@
 CVE-2007-0681 (profile.php in ExtCalendar 2 and earlier allows remote attackers to ...)
 	NOT-FOR-US: ExtCalendar
 CVE-2007-0680 (PHP remote file inclusion vulnerability in includes/functions.php in ...)
-	TODO: check PHPBB
+	- phpbb2 <not-affected>
+	NOTE: This vulnerability is for 
 CVE-2007-0679 (PHP remote file inclusion vulnerability in lang/leslangues.php in ...)
 	NOT-FOR-US: PHPMyRing
 CVE-2007-0678 (SQL injection vulnerability in windows.asp in Fullaspsite Asp Hosting ...)
@@ -46,14 +47,15 @@
 CVE-2007-0668 (The Loopback Filesystem (LOFS) in Sun Solaris 10 allows local users in ...)
 	NOT-FOR-US: Sun Solaris.
 CVE-2007-0667 (Unspecified vulnerability in (1) LedgerSMB before 1.1.5 and (2) ...)
-	- sql-ledger <unfixed> (bug #409703; )
+	- sql-ledger <unfixed> (bug #409703)
 CVE-2007-0666 (Ipswitch WS_FTP Server 5.04 allows attackers to execute arbitrary code ...)
 	NOT-FOR-US: WS_FTP Server
 CVE-2007-0665 (Format string vulnerability in the SCP module in Ipswitch WS_FTP 2007 ...)
 	NOT-FOR-US: WS_FTP Server
 CVE-2007-0664 (thttpd before 2.25b-r6 in Gentoo Linux is started from the system root ...)
 	- thttpd <not-affected>
-	NOTE: In accordance with Debian Policy is not possible start Webserver in root directory (/).
+	NOTE: In accordance with Debian Policy is not possible start Webserver 
+	NOTE: in root directory (/).
 CVE-2007-0663 (SQL injection vulnerability in index.php in Eclectic Designs ...)
 	NOT-FOR-US: Eclectic Designs CascadianFAQ
 CVE-2007-0662 (PHP remote file inclusion vulnerability in ...)




More information about the Secure-testing-commits mailing list