[Secure-testing-commits] r8261 - data/CVE
thijs at alioth.debian.org
thijs at alioth.debian.org
Wed Mar 5 07:38:41 UTC 2008
Author: thijs
Date: 2008-03-05 07:38:39 +0000 (Wed, 05 Mar 2008)
New Revision: 8261
Modified:
data/CVE/list
Log:
xine-lib already fixed
drupal not affected
some NFU's
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-03-04 21:29:55 UTC (rev 8260)
+++ data/CVE/list 2008-03-05 07:38:39 UTC (rev 8261)
@@ -1,48 +1,47 @@
CVE-2008-1132 (Untrusted search path vulnerability in src/mainwindow.c in Net ...)
- TODO: check
+ NOT-FOR-US: Net Activity Viewer
CVE-2008-1131 (Cross-site scripting (XSS) vulnerability in Drupal 6.0 allows remote ...)
- TODO: check
+ - drupal <not-affected> (Vulnerable code not present, affects only 6.x branch)
CVE-2008-1130 (Unspecified vulnerability in IBM WebSphere MQ 6.0.x before 6.0.2.2 and ...)
- TODO: check
+ NOT-FOR-US: WebSphere
CVE-2008-1129 (Cross-site scripting (XSS) vulnerability in admin/users/self.php in ...)
- TODO: check
+ NOT-FOR-US: XRMS
CVE-2008-1128 (PHP remote file inclusion vulnerability in tourney/index.php in ...)
- TODO: check
+ NOT-FOR-US: phpMyTourney
CVE-2008-1127 (Format string vulnerability in the cryactio function in Crysis ...)
- TODO: check
+ NOT-FOR-US: Crysis
CVE-2008-1126 (PHP remote file inclusion vulnerability in main.php in Barryvan Compo ...)
- TODO: check
+ NOT-FOR-US: Barryvan Compo Manager
CVE-2008-1125 (Multiple directory traversal vulnerabilities in Podcast Generator 1.0 ...)
- TODO: check
+ NOT-FOR-US: Podcast Generator
CVE-2008-1124 (Multiple PHP remote file inclusion vulnerabilities in Podcast ...)
- TODO: check
+ NOT-FOR-US: Podcast Generator
CVE-2008-1123 (Multiple PHP remote file inclusion vulnerabilities in SiteBuilder ...)
- TODO: check
+ NOT-FOR-US: SiteBuilder
CVE-2008-1122 (SQL injection vulnerability in index.php in Koobi Pro 5.7 allows ...)
- TODO: check
+ NOT-FOR-US: Koobi
CVE-2008-1121 (SQL injection vulnerability in index.php in eazyPortal 1.0 and earlier ...)
- TODO: check
+ NOT-FOR-US: eazyPortal
CVE-2008-1120 (Format string vulnerability in the embedded Internet Explorer ...)
- TODO: check
+ NOT-FOR-US: ICQ
CVE-2008-1119 (Directory traversal vulnerability in include/doc/get_image.php in ...)
- TODO: check
+ NOT-FOR-US: Centreon
CVE-2008-1118
RESERVED
CVE-2008-1117
RESERVED
CVE-2008-1116 (Insecure method vulnerability in the Web Scan Object ActiveX control ...)
- TODO: check
+ NOT-FOR-US: Rising Antivirus
CVE-2008-1115 (Unspecified vulnerability in Sun Solaris 8 directory functions allows ...)
- TODO: check
+ NOT-FOR-US: Sun Solaris
CVE-2008-1114 (Vocera Communications wireless handsets, when using Protected ...)
- TODO: check
+ NOT-FOR-US: Vocera
CVE-2008-1113 (Cisco Unified Wireless IP Phone 7921, when using Protected Extensible ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2008-1112
REJECTED
- TODO: check
CVE-2008-1110 (Buffer overflow in demuxers/demux_asf.c (aka the ASF demuxer) in the ...)
- TODO: check
+ - xine-lib 1.1.10-1
CVE-2008-1109
RESERVED
CVE-2008-1108
@@ -72,7 +71,7 @@
CVE-2008-1096
RESERVED
CVE-2008-1095 (Unspecified vulnerability in the Internet Protocol (IP) implementation ...)
- TODO: check
+ NOT-FOR-US: Sun Solaris
CVE-2008-1094
RESERVED
CVE-2008-1093
@@ -98,11 +97,11 @@
CVE-2008-1083
RESERVED
CVE-2008-1082 (Opera before 9.26 allows remote attackers to "bypass sanitization ...)
- TODO: check
+ NOT-FOR-US: Opera
CVE-2008-1081 (Opera before 9.26 allows user-assisted remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: Opera
CVE-2008-1080 (Opera before 9.26 allows user-assisted remote attackers to read ...)
- TODO: check
+ NOT-FOR-US: Opera
CVE-2008-1079
RESERVED
CVE-2008-1078 (expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and ...)
More information about the Secure-testing-commits
mailing list