[Secure-testing-commits] r10163 - data/CVE

fw at alioth.debian.org fw at alioth.debian.org
Sun Oct 26 13:06:21 UTC 2008 

Author: fw
Date: 2008-10-26 13:06:20 +0000 (Sun, 26 Oct 2008)
New Revision: 10163

Modified:
   data/CVE/list
Log:
More NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-10-26 13:06:03 UTC (rev 10162)
+++ data/CVE/list	2008-10-26 13:06:20 UTC (rev 10163)
@@ -40,7 +40,7 @@
 	NOTE: handled in FTP mode. Since the server might directly serve
 	NOTE: HTML files anyway, this seems a remote risk.
 CVE-2008-4722 (Unspecified vulnerability in Sun Integrated Lights-Out Manager (ILOM) ...)
-	TODO: check
+	NOT-FOR-US: Sun ILOM
 CVE-2008-4721 (PHP Jabbers Post Comment 3.0 allows remote attackers to bypass ...)
 	TODO: check
 CVE-2008-4720 (Multiple PHP remote file inclusion vulnerabilities in The Gemini ...)
@@ -98,11 +98,11 @@
 CVE-2008-4694 (Unspecified vulnerability in Opera before 9.60 allows remote attackers ...)
 	NOT-FOR-US: Opera
 CVE-2008-4693 (The SORT/LIST SERVICES component in IBM DB2 9.1 before FP6 and 9.5 ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2008-4692 (The Native Managed Provider for .NET component in IBM DB2 8 before ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2008-4691 (Unspecified vulnerability in the SQLNLS_UNPADDEDCHARLEN function in ...)
-	TODO: check
+	NOT-FOR-US: IBM DB2
 CVE-2008-4690 (lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx ...)
 	TODO: check
 CVE-2008-4689 (Mantis before 1.1.3 does not unset the session cookie during logout, ...)
@@ -122,9 +122,9 @@
 CVE-2008-4680 (packet-usb.c in the USB dissector in Wireshark 0.99.7 through 1.0.3 ...)
 	TODO: check
 CVE-2008-4679 (The Web Services Security component in IBM WebSphere Application ...)
-	TODO: check
+	NOT-FOR-US: IBM Websphere
 CVE-2008-4678 (The HTTP_Request_Parser method in the HTTP Transport component in IBM ...)
-	TODO: check
+	NOT-FOR-US: IBM Websphere
 CVE-2008-4677 (autoload/netrw.vim (aka the Netrw Plugin) 109, 131, and other versions ...)
 	TODO: check
 CVE-2008-XXXX [local file inclusion in drupal]

More information about the Secure-testing-commits mailing list