[Secure-testing-commits] r11544 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Thu Apr 2 21:34:17 UTC 2009
Author: jmm-guest
Date: 2009-04-02 21:34:17 +0000 (Thu, 02 Apr 2009)
New Revision: 11544
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-04-02 21:22:11 UTC (rev 11543)
+++ data/CVE/list 2009-04-02 21:34:17 UTC (rev 11544)
@@ -1,29 +1,29 @@
CVE-2009-1221
RESERVED
CVE-2009-1220 (Cross-site scripting (XSS) vulnerability in +webvpn+/index.html in ...)
- TODO: check
+ NOT-FOR-US: Cisco Adaptive Security Appliances
CVE-2009-1219 (Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun ...)
- TODO: check
+ NOT-FOR-US: Sun Calendar Express Web Server
CVE-2009-1218 (Multiple cross-site scripting (XSS) vulnerabilities in Sun Calendar ...)
- TODO: check
+ NOT-FOR-US: Sun Calendar Express Web Server
CVE-2009-1217 (Off-by-one error in the GpFont::SetData function in gdiplus.dll in ...)
- TODO: check
+ NOT-FOR-US: Windows GDI+
CVE-2009-1216 (Multiple unspecified vulnerabilities in (1) unlzh.c and (2) unpack.c ...)
TODO: check
CVE-2008-6579 (Nortel Communication Server 1000 4.50.x allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Nortel Communication Server
CVE-2008-6578 (Multiple unspecified vulnerabilities in Nortel Communication Server ...)
- TODO: check
+ NOT-FOR-US: Nortel Communication Server
CVE-2008-6577 (Nortel MG1000S, Signaling Server, and Call Server on the ...)
- TODO: check
+ NOT-FOR-US: Nortel appliances
CVE-2008-6576 (Unspecified vulnerability in the "session limitation technique" in the ...)
- TODO: check
+ NOT-FOR-US: Nortel Communication Server
CVE-2008-6575 (Unspecified vulnerability in the SIP server in SIP Enablement Services ...)
- TODO: check
+ NOT-FOR-US: Avaya Communication Manager
CVE-2008-6574 (Unspecified vulnerability in SIP Enablement Services (SES) in Avaya ...)
- TODO: check
+ NOT-FOR-US: Avaya Communication Manager
CVE-2008-6573 (Multiple SQL injection vulnerabilities in Avaya SIP Enablement ...)
- TODO: check
+ NOT-FOR-US: Avaya Communication Manager
CVE-2009-1215 (Race condition in GNU screen 4.0.3 allows local users to create or ...)
- screen <unfixed> (bug #521123)
[etch] - screen <not-affected> (etch version predates #433338)
@@ -54,7 +54,6 @@
NOT-FOR-US: Cafe Access Analyzer CGI Professional
CVE-2009-1205
REJECTED
- NOT-FOR-US: EAI WebViewer3D ActiveX control
CVE-2009-1204 (Cross-site scripting (XSS) vulnerability in TikiWiki (Tiki) ...)
NOT-FOR-US: TikiWiki
CVE-2009-1203
@@ -6813,7 +6812,7 @@
CVE-2008-4826
RESERVED
CVE-2008-4825 (Multiple buffer overflows in UltraISO 9.3.1.2633, and possibly other ...)
- TODO: check
+ NOT-FOR-US: UltraISO
CVE-2008-4824 (Multiple unspecified vulnerabilities in Adobe Flash Player 10.x before ...)
NOT-FOR-US: Adobe Flash Player
CVE-2008-4823 (Cross-site scripting (XSS) vulnerability in Adobe Flash Player ...)
@@ -9113,7 +9112,7 @@
[etch] - flashplugin-nonfree <no-dsa> (Contrib not supported)
NOTE: automatically downloads latest update from adobe which is 9.0.124.0 currently
CVE-2008-3871 (Multiple format string vulnerabilities in UltraISO 9.3.1.2633, and ...)
- TODO: check
+ NOT-FOR-US: UltraISO
CVE-2008-3870
RESERVED
CVE-2008-3869
@@ -24735,7 +24734,7 @@
- tar 1.18-1 (low; bug #441444)
- cpio 2.9-5 (low; bug #449222)
CVE-2007-4475 (Stack-based buffer overflow in EAI WebViewer3D ActiveX control ...)
- TODO: check
+ NOT-FOR-US: EAI WebViewer3D ActiveX control
CVE-2007-4474 (Multiple stack-based buffer overflows in the IBM Lotus Domino Web ...)
NOT-FOR-US: IBM Lotus Domino Web Access
CVE-2007-4473 (Gesytec Easylon OPC Server before 2.3.44 does not properly validate ...)
More information about the Secure-testing-commits
mailing list