[Secure-testing-commits] r6694 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Tue Sep 25 12:20:34 UTC 2007 

Author: nion
Date: 2007-09-25 12:20:33 +0000 (Tue, 25 Sep 2007)
New Revision: 6694

Modified:
   data/CVE/list
Log:
NFUs
new issue: CVE-2007-1320 xen-3.0


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-09-25 12:06:04 UTC (rev 6693)
+++ data/CVE/list	2007-09-25 12:20:33 UTC (rev 6694)
@@ -81,25 +81,25 @@
 CVE-2007-5021 (Buffer overflow in the Client Acceptor Daemon (CAD) in certain IBM ...)
 	NOT-FOR-US: IBM Tivoli Storage Manager
 CVE-2007-5020 (Unspecified vulnerability in Adobe Acrobat and Reader 8.1 on Windows ...)
-	TODO: check
+	NOT-FOR-US: Acrobat Reader
 CVE-2004-2687 (distcc 2.x, as used in XCode 1.5 and others, when not configured to ...)
 	TODO: check
 CVE-2004-2686 (Directory traversal vulnerability in the vfs_getvfssw function in ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2003-1339 (Stack-based buffer overflow in eZnet.exe, as used in eZ (a) ...)
-	TODO: check
+	NOT-FOR-US: eZnet
 CVE-2003-1338 (CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2 and ...)
-	TODO: check
+	NOT-FOR-US: Abyss Web Server
 CVE-2003-1337 (Heap-based buffer overflow in Aprelium Abyss Web Server 1.1.2 and ...)
-	TODO: check
+	NOT-FOR-US: Abyss Web Server
 CVE-2003-1336 (Buffer overflow in mIRC before 6.11 allows remote attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: mIRC
 CVE-2002-2226 (Buffer overflow in tftpd of TFTP32 2.21 and earlier allows remote ...)
-	TODO: check
+	NOT-FOR-US: Tftpd32
 CVE-2001-1583 (lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2001-1582 (Buffer overflow in the LDAP naming services library (libsldap) in Sun ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2007-XXXX [mimep insecure tempfile usage and insecure calls to LaTeX and dvips]
 	- mp 3.7.1-8
 CVE-2007-5019 (Buffer overflow in the Sun Java Web Start ActiveX control in Java ...)
@@ -8761,6 +8761,7 @@
 CVE-2007-1320 (Multiple heap-based buffer overflows in the cirrus_invalidate_region ...)
 	{DSA-1284-1 DTSA-38-1}
 	- qemu 0.9.0-2 (bug #424070)
+	- xen-3.0 <unfixed> (bug #444007; medium)
 CVE-2007-1319 (Unspecified vulnerability in the IOPCServer::RemoveGroup function in ...)
 	NOT-FOR-US: DeviceXPlorer OLE
 CVE-2007-1318

More information about the Secure-testing-commits mailing list