[Secure-testing-commits] r10145 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Wed Oct 22 17:10:12 UTC 2008
Author: nion
Date: 2008-10-22 17:10:10 +0000 (Wed, 22 Oct 2008)
New Revision: 10145
Modified:
data/CVE/list
Log:
NFUs
CVE-2008-4618 will be fixed in linux-2.6 2.6.26-10 (update pending)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-10-22 17:02:02 UTC (rev 10144)
+++ data/CVE/list 2008-10-22 17:10:10 UTC (rev 10145)
@@ -7,7 +7,7 @@
CVE-2008-4632 (Multiple directory traversal vulnerabilities in index.php in Kure ...)
NOT-FOR-US: Kure
CVE-2008-4631 (Stack-based buffer overflow in the Message::AddToString function in ...)
- TODO: check
+ NOT-FOR-US: MUSCLE, NOTE this is not the multiple alignment program for protein sequences in Debian
CVE-2008-4630 (Multiple unspecified vulnerabilities in Midgard Components (MidCOM) ...)
NOT-FOR-US: Midgard Components Framework
CVE-2008-4629 (Cross-site scripting (XSS) vulnerability in Usagi Project MyNETS 1.2.0 ...)
@@ -19,7 +19,7 @@
CVE-2008-4626 (Directory traversal vulnerability in index.php in Fritz Berger yet ...)
NOT-FOR-US: yappa-ng
CVE-2008-4625 (SQL injection vulnerability in stnl_iframe.php in the ShiftThis ...)
- TODO: check
+ NOT-FOR-US: st_newsletter plugin for WordPress
CVE-2008-4624 (PHP remote file inclusion vulnerability in init.php in Fast Click SQL ...)
NOT-FOR-US: Fast Click SQL Lite
CVE-2008-4623 (SQL injection vulnerability in the DS-Syndicate (com_ds-syndicate) ...)
@@ -33,11 +33,12 @@
CVE-2008-4619 (The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a ...)
NOT-FOR-US: Sun Solaris
CVE-2008-4618 (The Stream Control Transmission Protocol (sctp) implementation in the ...)
- TODO: check
+ - linux-2.6 2.6.26-10 (low)
+ - linux-2.6.24 <unfixed> (low)
CVE-2008-4617 (SQL injection vulnerability in the actualite module 1.0 for Joomla! ...)
- TODO: check
+ NOT-FOR-US: actualite module for Joomla!
CVE-2008-4616 (The SpamBam plugin for WordPress allows remote attackers to bypass ...)
- TODO: check
+ NOT-FOR-US: SpamBam plugin for WordPress
CVE-2008-4615 (Unspecified vulnerability in i_utils.asp in PortalApp before 4.01a has ...)
NOT-FOR-US: PortalApp
CVE-2008-4614 (PortalApp 4.0 does not require authentication for (1) forums.asp and ...)
More information about the Secure-testing-commits
mailing list