[Secure-testing-commits] r10587 - data/CVE

jamie-guest at alioth.debian.org jamie-guest at alioth.debian.org
Tue Dec 2 23:00:29 UTC 2008 

Author: jamie-guest
Date: 2008-12-02 23:00:28 +0000 (Tue, 02 Dec 2008)
New Revision: 10587

Modified:
   data/CVE/list
Log:
Added several NFUs to data/CVE/list

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-12-02 22:49:00 UTC (rev 10586)
+++ data/CVE/list	2008-12-02 23:00:28 UTC (rev 10587)
@@ -321,7 +321,7 @@
 CVE-2008-5163 (Multiple SQL injection vulnerabilities in The Rat CMS Pre-Alpha 2 ...)
 	NOT-FOR-US: The Rat CMS
 CVE-2008-5162 (The arc4random function in the kernel in FreeBSD 6.3 through 7.1 does ...)
-	TODO: check
+	NOT-FOR-US: FreeBSD
 CVE-2008-5161 (Error handling in the SSH protocol in (1) SSH Tectia Client and Server ...)
 	- openssh <unfixed> (low; bug #506115)
 	[etch] - openssh <no-dsa> (minor issue)
@@ -1518,7 +1518,7 @@
 CVE-2008-4637 (Cross-site scripting (XSS) vulnerability in cpCommerce before 1.2.4 ...)
 	NOT-FOR-US: cpCommerce
 CVE-2008-4636 (yast2-backup 2.14.2 through 2.16.6 on SUSE Linux and Novell Linux ...)
-	TODO: check
+	NOT-FOR-US: SUSE Linux and Novell Linux (yast2-backup)
 CVE-2008-4635 (Unspecified vulnerability in Hisanaga Electric Co, Ltd. hisa_cart 1.29 ...)
 	NOT-FOR-US: XOOPS module
 CVE-2008-4634 (Cross-site scripting (XSS) vulnerability in Movable Type 4 through ...)
@@ -2287,12 +2287,12 @@
 CVE-2008-4316
 	RESERVED
 CVE-2008-4315 (tog-pegasus in OpenGroup Pegasus 2.7.0 on Red Hat Enterprise Linux ...)
-	TODO: check
+	NOT-FOR-US: OpenPegasus
 CVE-2008-4314 (smbd in Samba 3.0.29 through 3.2.4 might allow remote attackers to ...)
 	- samba 2:3.2.5-1
 	[etch] - samba <not-affected> (Vulnerable code not present)
 CVE-2008-4313 (A certain Red Hat patch for tog-pegasus in OpenGroup Pegasus 2.7.0 ...)
-	TODO: check
+	NOT-FOR-US: OpenPegasus
 CVE-2008-4312
 	RESERVED
 CVE-2008-4311
@@ -4042,7 +4042,7 @@
 CVE-2008-3645 (Heap-based buffer overflow in the local IPC component in the ...)
 	NOT-FOR-US: Mac OS
 CVE-2008-3644 (Apple Safari before 3.2 does not properly prevent caching of form data ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari
 CVE-2008-3643 (Unspecified vulnerability in Finder in Mac OS X 10.5.5 allows ...)
 	NOT-FOR-US: Mac OS
 CVE-2008-3642 (Buffer overflow in ColorSync in Mac OS X 10.4.11 and 10.5.5 allows ...)
@@ -4091,7 +4091,7 @@
 CVE-2008-3624 (Heap-based buffer overflow in Apple QuickTime before 7.5.5 allows ...)
 	NOT-FOR-US: Apple QuickTime
 CVE-2008-3623 (Heap-based buffer overflow in CoreGraphics in Apple Safari before 3.2 ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari on Windows
 CVE-2008-3622 (Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac ...)
 	NOT-FOR-US: Mac OS X
 CVE-2008-3621 (VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 ...)

More information about the Secure-testing-commits mailing list