[Secure-testing-commits] r8421 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Thu Mar 27 09:43:55 UTC 2008
Author: jmm-guest
Date: 2008-03-27 09:43:54 +0000 (Thu, 27 Mar 2008)
New Revision: 8421
Modified:
data/CVE/list
Log:
three viewvc issues (I forgot them to commit to SVN earlier)
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-03-27 09:35:40 UTC (rev 8420)
+++ data/CVE/list 2008-03-27 09:43:54 UTC (rev 8421)
@@ -280,9 +280,9 @@
CVE-2008-1393 (Plone CMS 3.0.5, and probably other 3.x versions, places a base64 ...)
TODO: check
CVE-2008-1392 (The default configuration of VMware Workstation 6.0.2, VMware Player ...)
- TODO: check
+ NOT-FOR-US: Vmware
CVE-2007-6711 (Unspecified vulnerability in customer.php in FreeWebshop.org 2.2.5, ...)
- TODO: check
+ NOT-FOR-US: FreeWebShop.org
CVE-2005-4873 (Multiple stack-based buffer overflows in the phpcups PHP module for ...)
TODO: check
CVE-2008-1476 (Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) before ...)
@@ -360,13 +360,13 @@
CVE-2008-1365 (Stack-based buffer overflow in Trend Micro OfficeScan Corporate ...)
NOT-FOR-US: Trend Micro OfficeScan Corporate Edition
CVE-2008-1364 (Unspecified vulnerability in the DHCP service in VMware Workstation ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2008-1363 (VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2008-1362 (VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2008-1361 (VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2008-1359 (Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB ...)
NOT-FOR-US: Invision Power Board
CVE-2008-1358 (Sack-based buffer overflow in the IMAP server in Alt-N Technologies ...)
@@ -406,7 +406,7 @@
CVE-2008-1341 (SQL injection vulnerability in SearchResults.aspx in LaGarde ...)
NOT-FOR-US: LaGarde StoreFront
CVE-2008-1340 (Virtual Machine Communication Interface (VMCI) in VMware Workstation ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2008-1339
RESERVED
CVE-2008-1338 (The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and ...)
@@ -501,11 +501,11 @@
CVE-2008-1295 (SQL injection vulnerability in archives.php in Gregory Kokanosky (aka ...)
NOT-FOR-US: phpMyNewsletter
CVE-2008-1292 (ViewVC before 1.0.5 provides revision metadata without properly ...)
- TODO: check
+ - viewvc <unfixed> (bug #471380)
CVE-2008-1291 (ViewVC before 1.0.5 stores sensitive information under the web root ...)
- TODO: check
+ - viewvc <unfixed> (bug #471380)
CVE-2008-1290 (ViewVC before 1.0.5 includes "all-forbidden" files within search ...)
- TODO: check
+ - viewvc <unfixed> (bug #471380)
CVE-2008-1289 (Multiple buffer overflows in Asterisk Open Source 1.4.x before ...)
- asterisk 1:1.4.18.1~dfsg-1 (medium)
[etch] - asterisk <not-affected> (Only 1.4.x and above affected)
@@ -711,7 +711,7 @@
CVE-2008-1200 (Unspecified vulnerability in Microsoft Access allows remote ...)
NOT-FOR-US: Microsoft Access
CVE-2008-1198 (The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 ...)
- TODO: check
+ NOT-FOR-US: Adobe Flash CS3 Professional
CVE-2008-1197
RESERVED
CVE-2008-1196 (Stack-based buffer overflow in Java Web Start (javaws.exe) in Sun JDK ...)
@@ -811,7 +811,7 @@
CVE-2008-1161 (Buffer overflow in the Matroska demuxer (demuxers/demux_matroska.c) in ...)
- xine-lib 1.1.10.1-1 (medium)
CVE-2008-1160 (ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra ...)
- TODO: check
+ NOT-FOR-US: ZyXEL ZyWALL 1050
CVE-2008-1159
RESERVED
CVE-2008-1158
More information about the Secure-testing-commits
mailing list