[Secure-testing-commits] r10620 - data/CVE

jmm-guest at alioth.debian.org jmm-guest at alioth.debian.org
Thu Dec 4 21:28:32 UTC 2008


Author: jmm-guest
Date: 2008-12-04 21:28:31 +0000 (Thu, 04 Dec 2008)
New Revision: 10620

Modified:
   data/CVE/list
Log:
NFUs
tikiwiki removed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-12-04 21:24:25 UTC (rev 10619)
+++ data/CVE/list	2008-12-04 21:28:31 UTC (rev 10620)
@@ -1,21 +1,21 @@
 CVE-2008-5323 (Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg ...)
-	TODO: check
+	NOT-FOR-US: Wysi Wiki Wyg
 CVE-2008-5322 (Wysi Wiki Wyg 1.0 allows remote attackers to obtain system information ...)
-	TODO: check
+	NOT-FOR-US: Wysi Wiki Wyg
 CVE-2008-5321 (SQL injection vulnerability in index.php in GesGaleri, a module for ...)
 	TODO: check
 CVE-2008-5320 (SQL injection vulnerability in usersettings.php in e107 0.7.13 and ...)
-	TODO: check
+	NOT-FOR-US: e107
 CVE-2008-5319 (Unspecified vulnerability in Tikiwiki before 2.2 has unknown impact ...)
-	TODO: check
+	- tikiwiki <removed>
 CVE-2008-5318 (Unspecified vulnerability in Tikiwiki before 2.2 has unknown impact ...)
-	TODO: check
+	- tikiwiki <removed>
 CVE-2008-5317 (Integer signedness error in the cmsAllocGamma function in ...)
 	TODO: check
 CVE-2008-5316 (Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in ...)
 	TODO: check
 CVE-2008-5315 (Directory traversal vulnerability in the web interface in Apple iPhone ...)
-	TODO: check
+	NOT-FOR-US: Apple iPhone Configuration Web Utility
 CVE-2008-XXXX [multiple insecure tempfiles usage issues in devscripts]
 	- devscripts <unfixed> (low; bug #507482)
 CVE-2008-5314 (Stack consumption vulnerability in libclamav/special.c in ClamAV ...)
@@ -5443,11 +5443,11 @@
 CVE-2008-3060 (V-webmail 1.5.0 allows remote attackers to obtain sensitive ...)
 	NOT-FOR-US: V-webmail
 CVE-2008-3059 (member/settings_account.php in Octeth Oempro 3.5.5.1, and possibly ...)
-	TODO: check
+	NOT-FOR-US: Octeth Oempro
 CVE-2008-3058 (Multiple SQL injection vulnerabilities in Octeth Oempro 3.5.5.1, and ...)
-	TODO: check
+	NOT-FOR-US: Octeth Oempro
 CVE-2008-3057 (Octeth Oempro 3.5.5.1, and possibly other versions before 4, does not ...)
-	TODO: check
+	NOT-FOR-US: Octeth Oempro
 CVE-2008-3056 (SQL injection vulnerability in the Codeon Petition (cd_petition) ...)
 	NOT-FOR-US: cd_petition extension for TYPO3
 CVE-2008-3055 (SQL injection vulnerability in the Support view (ext_tbl) extension ...)




More information about the Secure-testing-commits mailing list