[Secure-testing-commits] r11644 - data/CVE

Kees Cook kees at alioth.debian.org
Fri Apr 17 18:22:45 UTC 2009 

Author: kees
Date: 2009-04-17 18:22:45 +0000 (Fri, 17 Apr 2009)
New Revision: 11644

Modified:
   data/CVE/list
Log:
NFUs: 5, unfixed: pam


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-04-17 12:07:38 UTC (rev 11643)
+++ data/CVE/list	2009-04-17 18:22:45 UTC (rev 11644)
@@ -9,9 +9,9 @@
 CVE-2009-1295
 	RESERVED
 CVE-2009-1294
-	RESERVED
+	NOT-FOR-US: Novell Teaming
 CVE-2009-1293
-	RESERVED
+	NOT-FOR-US: Novell Teaming
 CVE-2009-1292 (UCM-CQ in IBM Rational ClearCase 7.0.0.x before 7.0.0.5, 7.0.1.x ...)
 	NOT-FOR-US: ClearCase
 CVE-2008-6723 (TurnkeyForms Entertainment Portal 2.0 allows remote attackers to ...)
@@ -2935,7 +2935,7 @@
 CVE-2009-0580
 	RESERVED
 CVE-2009-0579
-	RESERVED
+	- pam <unfixed> (bug #514437)
 CVE-2009-0578 (GNOME NetworkManager before 0.7.0.99 does not properly verify ...)
 	- network-manager-applet 0.7.0.99-1 (medium)
 CVE-2009-0577 (Integer overflow in the WriteProlog function in texttops in CUPS ...)
@@ -6358,7 +6358,7 @@
 CVE-2008-5260 (Heap-based buffer overflow in the CamImage.CamImage.1 ActiveX control ...)
 	NOT-FOR-US: ActiveX
 CVE-2008-5259
-	RESERVED
+	NOT-FOR-US: DivX Web Player
 CVE-2008-5258
 	RESERVED
 CVE-2008-5257 (webseald in WebSEAL 6.0.0.17 in IBM Tivoli Access Manager for ...)
@@ -7387,7 +7387,7 @@
 CVE-2008-4831 (Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ...)
 	NOT-FOR-US: Adobe ColdFusion
 CVE-2008-4830
-	RESERVED
+	NOT-FOR-US: KWEdit ActiveX control
 CVE-2008-4829 (Multiple buffer overflows in lib/http.c in Streamripper 1.63.5 allow ...)
 	{DSA-1683-1}
 	- streamripper 1.63.5-2 (bug #506377)
@@ -30729,7 +30729,7 @@
 CVE-2007-2239 (Stack-based buffer overflow in the SaveBMP method in the AXIS Camera ...)
 	NOT-FOR-US: AXIS Camera Control
 CVE-2007-2238
-	RESERVED
+	NOT-FOR-US: Whale Client Components ActiveX control
 CVE-2007-2237 (Microsoft Windows Graphics Device Interface (GDI+, GdiPlus.dll) allows ...)
 	NOT-FOR-US: Microsoft
 CVE-2007-2236 (footer.php in PunBB 1.2.14 and earlier allows remote attackers to ...)

More information about the Secure-testing-commits mailing list