[Secure-testing-commits] r10000 - data/CVE

[nion at alioth.debian.org]

Author: nion
Date: 2008-10-05 10:24:47 +0000 (Sun, 05 Oct 2008)
New Revision: 10000

Modified:
   data/CVE/list
Log:
NFUs
CVE-2008-4194 fixed in pdnsd 1.2.6-par-10
new mantis issue (CVE-2008-3102)


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-10-05 09:40:53 UTC (rev 9999)
+++ data/CVE/list	2008-10-05 10:24:47 UTC (rev 10000)
@@ -499,7 +499,7 @@
 CVE-2008-4195 (Opera before 9.52 does not properly restrict the ability of a framed ...)
 	NOT-FOR-US: Opera
 CVE-2008-4194 (The p_exec_query function in src/dns_query.c in pdnsd before 1.2.7-par ...)
-	- pdnsd <unfixed> (bug #500910)
+	- pdnsd 1.2.6-par-10 (bug #500910)
 CVE-2008-4193 (Stack-based buffer overflow in SecurityGateway.dll in Alt-N ...)
 	NOT-FOR-US: Alt-N Technologies SecurityGateway
 CVE-2008-4192 (The pserver_shutdown function in fence_egenera in cman 2.20080629 ...)
@@ -2138,7 +2138,7 @@
 CVE-2008-3543
 	RESERVED
 CVE-2008-3542 (Unspecified vulnerability in HP Insight Diagnostics before 7.9.1.2402 ...)
-	TODO: check
+	NOT-FOR-US: HP Insight Diagnostics
 CVE-2008-3541
 	RESERVED
 CVE-2008-3540
@@ -2189,7 +2189,7 @@
 	- linux-2.6 2.6.26-7
 	- linux-2.6.24 <unfixed>
 CVE-2008-3524 (rc.sysinit in initscripts before 8.76.3-1 in Fedora 9 allows local ...)
-	TODO: check
+	NOT-FOR-US: rc.sysinit on Fedora
 CVE-2008-3523
 	RESERVED
 CVE-2008-3522 (Buffer overflow in the jas_stream_printf function in ...)
@@ -3168,7 +3168,7 @@
 	- sun-java5 1.5.0-16-1 (bug #490260)
 	- sun-java6 6-07-1 (bug #490260)
 CVE-2008-3102 (Mantis 1.1.x through 1.1.2 and 1.2.x through 1.2.0a2 does not set the ...)
-	TODO: check
+	- mantis <unfixed> (low; bug #501179)
 CVE-2008-3101 (Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM ...)
 	NOT-FOR-US: vtiger CRM
 CVE-2008-3100 (Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve ...)