[Secure-testing-commits] r8516 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Sat Apr 12 15:25:41 UTC 2008 

Author: nion
Date: 2008-04-12 15:25:40 +0000 (Sat, 12 Apr 2008)
New Revision: 8516

Modified:
   data/CVE/list
Log:
NFUs
add another CVE id to plone3 issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-04-12 13:26:55 UTC (rev 8515)
+++ data/CVE/list	2008-04-12 15:25:40 UTC (rev 8516)
@@ -1876,7 +1876,7 @@
 CVE-2008-0885
 	RESERVED
 CVE-2008-0884 (The Replace function in the capp-lspp-config script in the (1) ...)
-	TODO: check
+	NOT-FOR-US: Red Hat Enterprise Linux
 	NOTE: Seems Redhat specific
 CVE-2008-0882 (Double free vulnerability in the process_browse_data function in CUPS ...)
 	{DSA-1530-1 DTSA-117-1}
@@ -2265,11 +2265,11 @@
 CVE-2008-0707 (HP StorageWorks Library and Tape Tools (LTT) before 4.5 SR1 on HP-UX ...)
 	NOT-FOR-US: HP-UX
 CVE-2008-0706 (Unspecified vulnerability in the BIOS F.26 and earlier for the HP ...)
-	TODO: check
+	NOT-FOR-US: BIOS F.26
 CVE-2008-0705
 	RESERVED
 CVE-2008-0704 (Unspecified vulnerability in the SSH server in HP OpenVMS TCP/IP ...)
-	TODO: check
+	NOT-FOR-US: HP OpenVMS
 CVE-2008-0703 (Multiple directory traversal vulnerabilities in sflog! 0.96 allow ...)
 	NOT-FOR-US: sflog!
 CVE-2008-0702 (Multiple heap-based buffer overflows in Titan FTP Server 6.03 and ...)
@@ -2626,7 +2626,7 @@
 CVE-2008-0538 (Multiple SQL injection vulnerabilities in phpIP Management 4.3.2 allow ...)
 	NOT-FOR-US: phpIP Management
 CVE-2008-0537 (Unspecified vulnerability in the Supervisor Engine 32 (Sup32), ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2008-0536
 	RESERVED
 CVE-2008-0535
@@ -3190,13 +3190,13 @@
 CVE-2008-0314
 	RESERVED
 CVE-2008-0313 (The ActiveDataInfo.LaunchProcess method in the ...)
-	TODO: check
+	NOT-FOR-US: Symantec Norton products
 CVE-2008-0312 (Stack-based buffer overflow in the AutoFix Support Tool ActiveX ...)
-	TODO: check
+	NOT-FOR-US: Symantec Norton products
 CVE-2008-0311 (Stack-based buffer overflow in the PGMWebHandler::parse_request ...)
-	TODO: check
+	NOT-FOR-US: Borland CaliberRM
 CVE-2008-0310 (Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 ...)
-	TODO: check
+	NOT-FOR-US: SCO UnixWare
 CVE-2008-0309 (Stack-based buffer overflow in Symantec Decomposer, as used in certain ...)
 	NOT-FOR-US: Symantec Decomposer
 CVE-2008-0308 (Symantec Decomposer, as used in certain Symantec antivirus products ...)
@@ -3444,7 +3444,7 @@
 CVE-2008-0212 (ovtopmd in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and ...)
 	NOT-FOR-US: HP OpenView Network Node Manager
 CVE-2008-0211 (Unspecified vulnerability in the BIOS F.04 through F.11 for the HP ...)
-	TODO: check
+	NOT-FOR-US: BIOS F.04
 CVE-2008-0210 (Uebimiau Webmail 2.7.10 and 2.7.2 does not protect authentication ...)
 	NOT-FOR-US: Uebimiau Webmail
 CVE-2008-0209 (Open redirect vulnerability in Forums/login.asp in Snitz Forums 2000 ...)
@@ -3552,7 +3552,7 @@
 CVE-2008-0165
 	RESERVED
 CVE-2008-0164 (Multiple cross-site request forgery (CSRF) vulnerabilities in Plone ...)
-	TODO: check
+	- plone3 <unfixed> (bug #473571)
 CVE-2008-0163 (Linux kernel 2.6, when using vservers, allows local users to access ...)
 	{DSA-1494-1}
 	- linux-2.6 <unfixed> (high)
@@ -3768,7 +3768,7 @@
 CVE-2008-0088 (Unspecified vulnerability in Active Directory on Microsoft Windows ...)
 	NOT-FOR-US: Windows
 CVE-2008-0087 (The DNS client in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2008-0086
 	RESERVED
 CVE-2008-0085
@@ -3776,7 +3776,7 @@
 CVE-2008-0084 (Unspecified vulnerability in the TCP/IP support in Microsoft Windows ...)
 	NOT-FOR-US: Windows
 CVE-2008-0083 (The (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2008-0082
 	RESERVED
 CVE-2008-0081 (Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 ...)
@@ -3807,9 +3807,9 @@
 CVE-2008-0071
 	RESERVED
 CVE-2008-0070 (Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA ...)
-	TODO: check
+	NOT-FOR-US: Orb Networks Orb and Winamp Remote BETA
 CVE-2008-0069 (Stack-based buffer overflow in XnView 1.92 and 1.92.1 allows ...)
-	TODO: check
+	NOT-FOR-US: XnView
 CVE-2008-0068
 	RESERVED
 CVE-2008-0067
@@ -6741,7 +6741,7 @@
 CVE-2007-5662
 	RESERVED
 CVE-2007-5661 (The Macrovision InstallShield InstallScript One-Click Install (OCI) ...)
-	TODO: check
+	NOT-FOR-US: Macrovision InstallShield
 CVE-2007-5660 (Unspecified vulnerability in the Update Service ActiveX control in ...)
 	NOT-FOR-US:  MacroVision FLEXnet Connect and InstallShield 2008
 CVE-2007-5659 (Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and ...)
@@ -9846,7 +9846,7 @@
 CVE-2007-4621 (Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain ...)
 	NOT-FOR-US: IBM AIX
 CVE-2007-4620 (Multiple stack-based buffer overflows in Computer Associates (CA) ...)
-	TODO: check
+	NOT-FOR-US: CA products
 CVE-2007-4619 (Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC ...)
 	{DSA-1469-1}
 	- flac 1.2.1-1 (medium)

More information about the Secure-testing-commits mailing list