[Secure-testing-commits] r9535 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Fri Aug 8 05:59:54 UTC 2008 

Author: white
Date: 2008-08-08 05:59:53 +0000 (Fri, 08 Aug 2008)
New Revision: 9535

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-08-07 23:15:29 UTC (rev 9534)
+++ data/CVE/list	2008-08-08 05:59:53 UTC (rev 9535)
@@ -200,7 +200,7 @@
 CVE-2008-3390 (Directory traversal vulnerability in libraries/general.init.php in ...)
 	NOT-FOR-US: Minishowcase Image Gallery
 CVE-2008-3389 (Stack-based buffer overflow in the libbecompat library in Ingres 2.6, ...)
-	TODO: check
+	NOT-FOR-US: Ingres
 CVE-2008-3388 (Multiple SQL injection vulnerabilities in Def-Blog 1.0.3 allow remote ...)
 	NOT-FOR-US: Def-Blog
 CVE-2008-3387 (SQL injection vulnerability in show.php in PHPFootball 1.6 allows ...)
@@ -267,9 +267,9 @@
 CVE-2008-3358
 	RESERVED
 CVE-2008-3357 (Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, ...)
-	TODO: check
+	NOT-FOR-US: Ingres
 CVE-2008-3356 (verifydb in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres ...)
-	TODO: check
+	NOT-FOR-US: Ingres
 CVE-2008-3355 (SQL injection vulnerability in sitemap.xml.php in Camera Life 2.6.2 ...)
 	NOT-FOR-US: Camera Life
 CVE-2008-3354 (Multiple PHP remote file inclusion vulnerabilities in the Newbb Plus ...)
@@ -664,7 +664,7 @@
 CVE-2008-3176
 	RESERVED
 CVE-2008-3175 (Integer underflow in rxRPC.dll in the LGServer service in the ...)
-	TODO: check
+	NOT-FOR-US: CA ARCserve Backup
 CVE-2008-3174
 	RESERVED
 CVE-2008-3173 (Microsoft Internet Explorer allows web sites to set cookies for ...)
@@ -2609,17 +2609,17 @@
 CVE-2008-2326
 	RESERVED
 CVE-2008-2325 (QuickLook in Apple Mac OS X 10.4.11 and 10.5.4 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2008-2324 (The Repair Permissions tool in Disk Utility in Apple Mac OS X 10.4.11 ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2008-2323 (Unspecified vulnerability in Data Detectors Engine in Apple Mac OS X ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2008-2322 (Integer overflow in CoreGraphics in Apple Mac OS X 10.4.11, 10.5.2, ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2008-2321 (Unspecified vulnerability in CoreGraphics in Apple Mac OS X 10.4.11 ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2008-2320 (Stack-based buffer overflow in CarbonCore in Apple Mac OS X 10.4.11 ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2008-2319
 	RESERVED
 CVE-2008-2318 (The WOHyperlink implementation in WebObjects in Apple Xcode tools ...)
@@ -3768,7 +3768,7 @@
 CVE-2008-1811 (Unspecified vulnerability in Oracle Application Express 3.0.1 has ...)
 	NOT-FOR-US: Oracle
 CVE-2008-1810 (Untrusted search path vulnerability in dbmsrv in SAP MaxDB 7.6.03.15 ...)
-	TODO: check
+	NOT-FOR-US: SAP MaxDB
 CVE-2008-1809 (Heap-based buffer overflow in Novell eDirectory 8.7.3 before ...)
 	NOT-FOR-US: Novell eDirectory
 CVE-2008-1808 (Multiple off-by-one errors in FreeType2 before 2.3.6 allow ...)
@@ -4140,7 +4140,7 @@
 CVE-2008-1663 (Cross-site scripting (XSS) vulnerability in HP System Management ...)
 	NOT-FOR-US: HP System Management Homepage
 CVE-2008-1662 (Unspecified vulnerability in the HP System Administration Manager ...)
-	TODO: check
+	NOT-FOR-US: HP System Administration Manager
 CVE-2008-1661 (Stack-based buffer overflow in DoubleTake.exe in HP StorageWorks ...)
 	NOT-FOR-US: HP StorageWorks
 CVE-2008-1660 (Unspecified vulnerability in useradd on HP-UX B.11.11, B.11.23, and ...)
@@ -4820,7 +4820,7 @@
 	{DSA-1595-1 DTSA-141-1}
 	- xorg-server 2:1.4.1~git20080517-2
 CVE-2008-1376 (A certain Red Hat build script for nfs-utils before 1.0.9-35z.el5_2 on ...)
-	TODO: check
+	NOT-FOR-US: Red Hat build script
 CVE-2008-1375 (Race condition in the directory notification subsystem (dnotify) in ...)
 	{DSA-1565-1}
 	- linux-2.6 2.6.25-2 (low)
@@ -11882,7 +11882,7 @@
 CVE-2007-5401 (Unrestricted file upload vulnerability in uploadrequest.asp in Layton ...)
 	NOT-FOR-US: Layton HelpBox
 CVE-2007-5400 (Heap-based buffer overflow in the Shockwave Flash (SWF) frame handling ...)
-	TODO: check
+	NOT-FOR-US: RealPlayer
 CVE-2007-5399 (Multiple heap-based buffer overflows in emlsr.dll in the EML reader in ...)
 	NOT-FOR-US: KeyView
 CVE-2007-5398 (Stack-based buffer overflow in the reply_netbios_packet function in ...)
@@ -18084,7 +18084,7 @@
 	{DSA-1364-2 DSA-1364-1}
 	- vim 1:7.1-056+1 (low)
 CVE-2007-2952 (Multiple stack-based buffer overflows in the filter service (aka ...)
-	TODO: check
+	NOT-FOR-US: Blue Coat K9 Web Protection
 CVE-2007-2951 (The parseIrcUrl function in src/kvirc/kernel/kvi_ircurl.cpp in KVIrc ...)
 	- kvirc 2:3.2.4-5 (bug #434419; medium)
 CVE-2007-2950 (Centennial Discovery 2006 Feature Pack 1, which is used by (1) Numara ...)

More information about the Secure-testing-commits mailing list