[Secure-testing-commits] r7006 - data/CVE

jmm-guest at alioth.debian.org jmm-guest at alioth.debian.org
Thu Oct 18 16:07:36 UTC 2007


Author: jmm-guest
Date: 2007-10-18 16:07:36 +0000 (Thu, 18 Oct 2007)
New Revision: 7006

Modified:
   data/CVE/list
Log:
remove NFUs for rejected issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-18 14:36:49 UTC (rev 7005)
+++ data/CVE/list	2007-10-18 16:07:36 UTC (rev 7006)
@@ -382,7 +382,7 @@
 	- phpbb2 2.0.13-6sarge3
 	NOTE: might be fixed in prior versions
 CVE-2002-2254 (The experimental IP packet queuing feature in Netfilter / IPTables in ...)
-	- linux-2.4 <removed>
+	- linux-2.6 <not-affected> (Fixed before initial upload into the archive, during 2.4)
 CVE-2002-2253 (Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier ...)
 	- libsieve <not-affected> (was fixed in 2.1.3 before debian version was uploaded)
 CVE-2002-2252 (SQL injection vulnerability in auth.inc.php in Thatware 0.5.0 and ...)
@@ -654,19 +654,14 @@
 	- alsaplayer 0.99.80~rc4-1 (medium; bug #446034)
 CVE-2007-5288
 	REJECTED
-	NOT-FOR-US: Hitachi TPBroker
 CVE-2007-5287
 	REJECTED
-	NOT-FOR-US: Hitachi Cosminexus Agent
 CVE-2007-5286
 	REJECTED
-	NOT-FOR-US: Hitachi Cosminexus
 CVE-2007-5285
 	REJECTED
-	NOT-FOR-US: Appfuse
 CVE-2007-5284
 	REJECTED
-	NOT-FOR-US: PowerArchiver
 CVE-2007-5283 (The TSC Domain Manager in Hitachi TPBroker Object Transaction Monitor ...)
 	NOT-FOR-US: Hitachi TPBroker
 CVE-2007-5282 (Hitachi Cosminexus Agent 03-00 through 03-05, and Cosminexus Library ...)
@@ -1383,7 +1378,6 @@
 	NOT-FOR-US: IBM Tivoli Storage Manager
 CVE-2007-5021
 	REJECTED
-	NOT-FOR-US: IBM Tivoli Storage Manager
 CVE-2007-5020 (Unspecified vulnerability in Adobe Acrobat and Reader 8.1 on Windows ...)
 	NOT-FOR-US: Acrobat Reader
 CVE-2004-2687 (distcc 2.x, as used in XCode 1.5 and others, when not configured to ...)
@@ -3110,7 +3104,6 @@
 	NOT-FOR-US: IBM DB2
 CVE-2007-4274
 	REJECTED
-	NOT-FOR-US: Duplicate of CVE-2007-4275
 CVE-2007-4273 (IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local ...)
 	NOT-FOR-US: IBM DB2
 CVE-2007-4272 (Multiple vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 ...)
@@ -4164,10 +4157,8 @@
 	NOT-FOR-US: Clavister CorePlus
 CVE-2007-3802
 	REJECTED
-	NOT-FOR-US: Symantec
 CVE-2007-3801
 	REJECTED
-	NOT-FOR-US: Symantec
 CVE-2007-3800 (Unspecified vulnerability in the Real-time scanner (RTVScan) component ...)
 	NOT-FOR-US: Symantec
 CVE-2007-3799 (The session_start function in ext/session in PHP 4.x up to 4.4.7 and ...)
@@ -9021,7 +9012,6 @@
 	NOT-FOR-US: ArcSDE
 CVE-2007-1769
 	REJECTED
-	NOT-FOR-US: Mephisto
 CVE-2007-1768 (Cross-site scripting (XSS) vulnerability in ...)
 	NOT-FOR-US: Mephisto
 CVE-2007-1767 (Unspecified vulnerability in (1) Deskbar.dll and (2) Toolbar.dll in ...)
@@ -9057,7 +9047,6 @@
 	RESERVED
 CVE-2007-1752
 	REJECTED
-	NOT-FOR-US: Microsoft
 CVE-2007-1751 (Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to ...)
 	NOT-FOR-US: Microsoft
 CVE-2007-1750 (Unspecified vulnerability in Microsoft Internet Explorer 6 allows ...)
@@ -9501,7 +9490,6 @@
 	NOT-FOR-US: Activist Mobilization Platform
 CVE-2007-1570
 	REJECTED
-	NOT-FOR-US: Haber Sistemi
 CVE-2007-1569 (Stack-based buffer overflow in NewsBin Pro 4.32 allows remote ...)
 	NOT-FOR-US: NewsBin Pro
 CVE-2007-1568 (Stack-based buffer overflow in DaanSystems NewsReactor 20070220.21 ...)
@@ -10928,7 +10916,6 @@
 	NOT-FOR-US: Rigter Portal System
 CVE-2006-7084
 	REJECTED
-	NOT-FOR-US: Rigter Portal System
 CVE-2006-7083 (Directory traversal vulnerability in index.php in Rigter Portal System ...)
 	NOT-FOR-US: Rigter Portal System
 CVE-2006-7082 (Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers ...)
@@ -12229,7 +12216,6 @@
 	NOT-FOR-US: MyBB (aka MyBulletinBoard)
 CVE-2007-0621
 	REJECTED
-	NOT-FOR-US: Microsoft Word
 CVE-2007-0620 (download.php in FD Script 1.3.2 and earlier allows remote attackers to ...)
 	NOT-FOR-US: FD Script
 CVE-2007-0619 (chmlib before 0.39 allows user-assisted remote attackers to execute ...)
@@ -13157,7 +13143,6 @@
 	NOTE: libgtop does not contain the affected code.
 CVE-2007-0234
 	REJECTED
-	NOTE: Duplicate of CVE-2007-0243
 CVE-2007-0233 (wp-trackback.php in WordPress 2.0.6 and earlier does not properly ...)
 	- wordpress 2.1.0-1 (unimportant)
 	NOTE: This is argubly a php bug, CVE-2006-3017
@@ -15594,7 +15579,6 @@
 	NOT-FOR-US: fipsCMS
 CVE-2006-6114
 	REJECTED
-	NOT-FOR-US: Novell
 CVE-2006-6113 (Monkey Boards 0.3.5 allows remote attackers to obtain sensitive ...)
 	NOT-FOR-US: Monkey Boards
 CVE-2006-6112 (LifeType 1.0.x and 1.1.x have insufficient access control for all of the PHP ...)
@@ -15977,7 +15961,6 @@
 	NOT-FOR-US: Less Inventory Manager
 CVE-2006-5941
 	REJECTED
-	NOT-FOR-US: Solaris, see #400557
 CVE-2006-5940 (Unspecified vulnerability in Grisoft AVG Anti-Virus before 7.1.407 has ...)
 	NOT-FOR-US: Grisoft AVG Anti-Virus
 CVE-2006-5939 (Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause ...)
@@ -18353,7 +18336,6 @@
 	NOT-FOR-US: Symantec
 CVE-2006-4854
 	REJECTED
-	NOT-FOR-US: Microsoft
 CVE-2006-4853 (SQL injection vulnerability in kategorix.asp in Haberx 1.02 through ...)
 	NOT-FOR-US: Haberx
 CVE-2006-4852 (SQL injection vulnerability in browse.asp in QuadComm Q-Shop 3.5 ...)
@@ -19706,7 +19688,6 @@
 	NOT-FOR-US: CatalogShop component for Mambo (com_catalogshop)
 CVE-2006-4274
 	REJECTED
-	NOT-FOR-US: Microsoft
 CVE-2006-4273 (Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin 3.5.4 ...)
 	NOT-FOR-US: Jelsoft vBulletin
 CVE-2006-4272 (** DISPUTED ** ...)
@@ -19844,7 +19825,6 @@
 	NOT-FOR-US: WEBInsta CMS
 CVE-2006-4216
 	REJECTED
-	NOT-FOR-US: Chaussette
 CVE-2006-4215 (PHP remote file inclusion vulnerability in index.php in Zen Cart ...)
 	NOT-FOR-US: Zen Cart
 CVE-2006-4214 (Multiple SQL injection vulnerabilities in Zen Cart 1.3.0.2 and earlier ...)




More information about the Secure-testing-commits mailing list