[Secure-testing-commits] r7152 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Wed Oct 31 06:30:36 UTC 2007 

Author: white
Date: 2007-10-31 06:30:36 +0000 (Wed, 31 Oct 2007)
New Revision: 7152

Modified:
   data/CVE/list
Log:
NFUs; two sitebar issues addressed to the sitebar security bug

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-31 06:01:20 UTC (rev 7151)
+++ data/CVE/list	2007-10-31 06:30:36 UTC (rev 7152)
@@ -17,15 +17,15 @@
 CVE-2007-5698 (Cross-site scripting (XSS) vulnerability in default.asp in CREApark ...)
 	NOT-FOR-US: CREApark GOLD KOY PORTALI
 CVE-2007-5697 (Multiple PHP remote file inclusion vulnerabilities in PHP Image 1.2 ...)
-	TODO: check
+	NOT-FOR-US: phpImage
 CVE-2007-5696 (PHP remote file inclusion vulnerability in includes.php in phpBasic ...)
-	TODO: check
+	NOT-FOR-US: phpBasic
 CVE-2007-5695 (command.php in SiteBar 3.3.8 allows remote attackers to redirect users ...)
 	TODO: check
 CVE-2007-5694 (Absolute path traversal vulnerability in the translation module ...)
-	TODO: check
+	- sitebar <unfixed> (low; bug #447135)
 CVE-2007-5693 (Eval injection vulnerability in the translation module ...)
-	TODO: check
+	- sitebar <unfixed> (low; bug #447135)
 CVE-2007-5692 (Multiple cross-site scripting (XSS) vulnerabilities in SiteBar 3.3.8 ...)
 	TODO: check
 CVE-2007-5691 (ParseFTPList.cpp in Mozilla Firefox 2.0.0.7 allows remote FTP servers ...)
@@ -37,11 +37,11 @@
 CVE-2007-5688 (Multiple SQL injection vulnerabilities in directory.php in the ...)
 	TODO: check
 CVE-2007-5687 (Multiple buffer overflows in the rich text processing functionality in ...)
-	TODO: check
+	NOT-FOR-US: JustSystems Ichitaro
 CVE-2007-5686 (initscripts in rPath Linux 1 sets insecure permissions for the ...)
 	TODO: check
 CVE-2007-5685 (The safe_path function in shttp before 0.0.5 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: shttp
 CVE-2007-5684 (Multiple directory traversal vulnerabilities in TikiWiki 1.9.8.1 and ...)
 	TODO: check
 CVE-2007-5683 (Multiple cross-site scripting (XSS) vulnerabilities in TikiWiki ...)

More information about the Secure-testing-commits mailing list