[Secure-testing-commits] r10424 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Wed Nov 19 19:15:59 UTC 2008
Author: nion
Date: 2008-11-19 19:15:58 +0000 (Wed, 19 Nov 2008)
New Revision: 10424
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-11-19 19:00:51 UTC (rev 10423)
+++ data/CVE/list 2008-11-19 19:15:58 UTC (rev 10424)
@@ -69,7 +69,7 @@
CVE-2008-5099 (Sun Logical Domain Manager (aka LDoms Manager or ldm) 1.0 through ...)
NOT-FOR-US: Sun Logical Domain Manager
CVE-2008-5098 (Cross-site scripting (XSS) vulnerability in Sun Java System Messaging ...)
- TODO: check
+ NOT-FOR-US: Sun Java System Messaging Serve
CVE-2008-5110 (syslog-ng does not call chdir when it calls chroot, which might allow ...)
- syslog-ng <unfixed> (unimportant; bug #505791)
NOTE: no security flaw by itself, still it should be fixed
@@ -85,11 +85,11 @@
CVE-2008-5094 (Heap-based buffer overflow in the NDS Service in Novell eDirectory ...)
NOT-FOR-US: eDirectory
CVE-2008-5093 (Cross-site scripting (XSS) vulnerability in the HTTP Protocol Stack ...)
- TODO: check
+ NOT-FOR-US: eDirectory
CVE-2008-5092 (Heap-based buffer overflows in Novell eDirectory HTTP protocol stack ...)
- TODO: check
+ NOT-FOR-US: eDirectory
CVE-2008-5091 (Buffer overflow in the LDAP Service in Novell eDirectory before 8.8 ...)
- TODO: check
+ NOT-FOR-US: eDirectory
CVE-2008-5090 (Electron Inc. Advanced Electron Forum before 1.0.7 allows remote ...)
NOT-FOR-US: Advanced Electron Forum
CVE-2008-5089 (Multiple insecure method vulnerabilities in the ...)
@@ -97,7 +97,7 @@
CVE-2008-5088 (Multiple SQL injection vulnerabilities in PHPKB Knowledge Base ...)
NOT-FOR-US: PHPKB
CVE-2008-5087 (SQL injection vulnerability in TYPO3 Another Backend Login ...)
- TODO: check
+ NOT-FOR-US: wrg_anotherbelogin extension for typo3
CVE-2008-5086
RESERVED
CVE-2008-5085
@@ -119,19 +119,19 @@
CVE-2008-5077
RESERVED
CVE-2008-5075 (Multiple SQL injection vulnerabilities in E-Uploader Pro 1.0 (aka ...)
- TODO: check
+ NOT-FOR-US: E-Uploader Pro
CVE-2008-5074 (SQL injection vulnerability in index.php in the Freshlinks 1.0 RC1 ...)
- TODO: check
+ NOT-FOR-US: Freshlinks module for PHP-Fusion
CVE-2008-5073 (Heap-based buffer overflow in an ActiveX control in Novell ZENworks ...)
NOT-FOR-US: Novell ZENworks ActiveX control
CVE-2008-5072 (vsfilter.dll in K-Lite Mega Codec Pack 3.5.7.0 allows remote attackers ...)
NOT-FOR-US: K-Lite Mega Codec Pack
CVE-2008-5071 (Multiple eval injection vulnerabilities in itpm_estimate.php in Yoxel ...)
- TODO: check
+ NOT-FOR-US: Yoxel
CVE-2008-5070 (SQL injection vulnerability in Pro Chat Rooms 3.0.3, when ...)
- TODO: check
+ NOT-FOR-US: Pro Chat Rooms
CVE-2008-5069 (SQL injection vulnerability in go.php in Panuwat PromoteWeb MySQL, ...)
- TODO: check
+ NOT-FOR-US: Panuwat PromoteWeb MySQL
CVE-2008-5068 (Multiple cross-site scripting (XSS) vulnerabilities in Kmita Gallery ...)
NOT-FOR-US: Kmita Gallery
CVE-2008-5067 (Cross-site scripting (XSS) vulnerability in search.php in Kmita ...)
@@ -163,7 +163,7 @@
CVE-2008-5054 (Multiple SQL injection vulnerabilities in Develop It Easy Membership ...)
NOT-FOR-US: Develop It Easy Membership System
CVE-2008-5053 (PHP remote file inclusion vulnerability in admin.rssreader.php in the ...)
- TODO: check
+ NOT-FOR-US: com_rssreader component for Joomla!
CVE-2008-5052 (The AppendAttributeValue function in the JavaScript engine in Mozilla ...)
TODO: check
CVE-2008-5051 (SQL injection vulnerability in the JooBlog (com_jb2) component 0.1.1 ...)
More information about the Secure-testing-commits
mailing list