[Secure-testing-commits] r6725 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Thu Sep 27 11:40:16 UTC 2007
Author: nion
Date: 2007-09-27 11:40:15 +0000 (Thu, 27 Sep 2007)
New Revision: 6725
Modified:
data/CVE/list
Log:
NFUs
CVE-2007-0063, CVE-2007-0062, CVE-2007-0061 vmware-package not affected
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-09-27 11:31:43 UTC (rev 6724)
+++ data/CVE/list 2007-09-27 11:40:15 UTC (rev 6725)
@@ -4133,7 +4133,7 @@
CVE-2007-3287
RESERVED
CVE-2007-3286 (Multiple buffer overflows in unspecified ActiveX controls in COM ...)
- TODO: check
+ NOT-FOR-US: Avaya IP Softphone
CVE-2007-3285 (Mozilla Firefox before 2.0.0.5, when run on Windows, allows remote ...)
- iceweasel <not-affected> (Affects only Firefox in Windows)
CVE-2007-3284 (corefoundation.dll in Apple Safari 3.0.1 (552.12.2) for Windows allows ...)
@@ -4799,7 +4799,7 @@
CVE-2007-3011 (The DBAsciiAccess CGI Script in the web interface in Fujitsu-Siemens ...)
NOT-FOR-US: Fujitsu-Siemens
CVE-2007-3010 (masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX ...)
- TODO: check
+ NOT-FOR-US: Alcatel OmniPCX Enterprise Communication Server
CVE-2007-3009 (Format string vulnerability in the MprLogToFile::logEvent function in ...)
NOT-FOR-US: Mbedthis AppWeb
CVE-2007-3008 (Mbedthis AppWeb before 2.2.2 enables the HTTP TRACE method, which has ...)
@@ -8450,10 +8450,8 @@
NOT-FOR-US: dproxy
CVE-2007-1464 (Format string vulnerability in the whiteboard Jabber protocol in ...)
- inkscape 0.45.1-1 (medium)
- TODO: File bug
CVE-2007-1463 (Format string vulnerability in Inkscape before 0.45.1 allows ...)
- inkscape 0.45.1-1 (low)
- TODO: File bug
CVE-2007-1462 (The luci server component in conga preserves the password between page ...)
NOT-FOR-US: conga
CVE-2007-1461 (The compress.bzip2:// URL wrapper provided by the bz2 extension in PHP ...)
@@ -11626,7 +11624,7 @@
CVE-2007-0327
RESERVED
CVE-2007-0326 (Multiple stack-based buffer overflows in the PhotoChannel Networks PNI ...)
- TODO: check
+ NOT-FOR-US: PNI Digital Media Photo Upload
CVE-2007-0325 (Multiple buffer overflows in the Trend Micro OfficeScan Web-Deployment ...)
NOT-FOR-US: Trend Micro OfficeScan
CVE-2007-0324 (Multiple buffer overflows in the LizardTech DjVu Browser Plug-in ...)
@@ -12305,11 +12303,11 @@
CVE-2007-0064
RESERVED
CVE-2007-0063 (Integer underflow in the DHCP server in EMC VMware Workstation before ...)
- TODO: check
+ - vmware-package <not-affected> (package just downloads vmware components, fixed upstream)
CVE-2007-0062 (Integer overflow in the DHCP server in EMC VMware Workstation before ...)
- TODO: check
+ - vmware-package <not-affected> (package just downloads vmware components, fixed upstream)
CVE-2007-0061 (The DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and ...)
- TODO: check
+ - vmware-package <not-affected> (package just downloads vmware components, fixed upstream)
CVE-2007-0060 (Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in ...)
NOT-FOR-US: CA
CVE-2007-0059 (Cross-zone scripting vulnerability in Apple Quicktime 3 to 7.1.3 ...)
More information about the Secure-testing-commits
mailing list