[Secure-testing-commits] r5581 - data/CVE

Florian Weimer fw at alioth.debian.org
Sat Mar 24 11:23:47 CET 2007 

Author: fw
Date: 2007-03-24 10:23:45 +0000 (Sat, 24 Mar 2007)
New Revision: 5581

Modified:
   data/CVE/list
Log:
NFUs
CVE-2007-1584: php5
CVE-2007-1583: php4, php5


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-03-24 10:15:59 UTC (rev 5580)
+++ data/CVE/list	2007-03-24 10:23:45 UTC (rev 5581)
@@ -1,19 +1,20 @@
 CVE-2007-1590 (The Grandstream BudgeTone 200 IP phone, with program 1.1.1.14 and ...)
-	TODO: check
+	NOT-FOR-US: Grandstream
 CVE-2007-1589 (TrueCrypt before 4.3, when set-euid mode is used on Linux, allows ...)
-	TODO: check
+	NOT-FOR-US: Truecrypt
 CVE-2007-1588 (server.cpp in MyServer 0.8.5 calls Process::setuid before calling ...)
-	TODO: check
+	NOT-FOR-US: MyServer
 CVE-2007-1587 (templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows ...)
-	TODO: check
+	NOT-FOR-US: StatsDawg
 CVE-2007-1586 (ZynOS 3.40 allows remote attackers to cause a denial of service (link ...)
-	TODO: check
+	NOT-FOR-US: Zyxel
 CVE-2007-1585 (The Linksys WAG200G with firmware 1.01.01 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2007-1584 (Buffer underflow in the header function in PHP 5.2.0 allows ...)
-	TODO: check
+	- php5 <unfixed>
 CVE-2007-1583 (The mb_parse_str function in PHP 4.0.0 through 4.4.6 and 5.0.0 through ...)
-	TODO: check
+	- php5 <unfixed> (medium)
+	- php4 <unfixed> (medium)
 CVE-2007-1582 (The resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 ...)
 	TODO: check
 CVE-2007-1581 (The resource system in PHP 5.0.0 through 5.2.1 allows ...)
@@ -45,7 +46,7 @@
 CVE-2007-1568 (Stack-based buffer overflow in DaanSystems NewsReactor 20070220.21 ...)
 	TODO: check
 CVE-2007-1567 (Stack-based buffer overflow in War FTP Daemon 1.65, and possibly ...)
-	TODO: check
+	NOT-FOR-US: WarFTPd
 CVE-2007-1566 (SQL injection vulnerability in News/page.asp in NetVIOS Portal allows ...)
 	TODO: check
 CVE-2007-1565 (Konqueror 3.5.5 allows remote attackers to cause a denial of service ...)

More information about the Secure-testing-commits mailing list