[Secure-testing-commits] r7901 - data/CVE

[nion at alioth.debian.org]

Author: nion
Date: 2008-01-13 17:39:00 +0000 (Sun, 13 Jan 2008)
New Revision: 7901

Modified:
   data/CVE/list
Log:
NFUs, new issue: xine-lib

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-01-13 17:38:39 UTC (rev 7900)
+++ data/CVE/list	2008-01-13 17:39:00 UTC (rev 7901)
@@ -23,7 +23,7 @@
 CVE-2008-0226 (Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL ...)
 	TODO: check
 CVE-2008-0225 (Heap-based buffer overflow in the rmff_dump_cont function in ...)
-	- xine-lib <unfixed> (medium; bug #460551)
+	TODO: check
 CVE-2008-0224 (SQL injection vulnerability in index.php in the Newbb_plus 0.92 and ...)
 	NOT-FOR-US: RunCMS
 CVE-2008-0223 (Buffer overflow in JustSystem JSFC.DLL, as used in multiple JustSystem ...)
@@ -1545,7 +1545,7 @@
 CVE-2008-0004
 	RESERVED
 CVE-2008-0003 (Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback ...)
-	TODO: check
+	NOT-FOR-US: OpenPegasus CIM management server
 CVE-2008-0002
 	RESERVED
 CVE-2008-0001
@@ -4397,7 +4397,7 @@
 CVE-2007-5361 (The Communication Server in Alcatel-Lucent OmniPCX Enterprise 7.1 and ...)
 	NOT-FOR-US: Alcatel-Lucent OmniPCX Enterprise
 CVE-2007-5360 (Buffer overflow in OpenPegasus Management server, as used in VMWare ...)
-	TODO: check
+	NOT-FOR-US: OpenPegasus Management server
 CVE-2007-5359
 	RESERVED
 CVE-2007-5358 (Multiple buffer overflows in the voicemail functionality in Asterisk ...)