[Secure-testing-commits] r12577 - data/CVE

Nico Golde nion at alioth.debian.org
Wed Aug 12 15:08:19 UTC 2009 

Author: nion
Date: 2009-08-12 15:08:19 +0000 (Wed, 12 Aug 2009)
New Revision: 12577

Modified:
   data/CVE/list
Log:
- NFUs
- CVE-2009-271{4,5} fixed in virtualbox-ose 3.0.4-dfsg-1


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-12 15:02:50 UTC (rev 12576)
+++ data/CVE/list	2009-08-12 15:08:19 UTC (rev 12577)
@@ -1,9 +1,9 @@
 CVE-2009-2737 (The EditCSVAction function in cgi/actions.py in Roundup 1.2 before ...)
 	- roundup 1.4.4-4+lenny1 (bug #518768)
 CVE-2009-2736 (Static code injection vulnerability in admin.php in sun-jester ...)
-	TODO: check
+	NOT-FOR-US: OpenNews
 CVE-2009-2735 (SQL injection vulnerability in admin.php in sun-jester OpenNews 1.0, ...)
-	TODO: check
+	NOT-FOR-US: OpenNews
 CVE-2009-2734
 	RESERVED
 CVE-2009-2733
@@ -19,7 +19,7 @@
 CVE-2009-2728
 	RESERVED
 CVE-2009-2727 (Stack-based buffer overflow in the _tt_internal_realpath function in ...)
-	TODO: check
+	NOT-FOR-US: IBM AIX
 CVE-2009-2726
 	RESERVED
 CVE-2009-2725
@@ -79,9 +79,9 @@
 	- linux-2.6.24 <removed>
 	NOTE: cve id already requested on oss-sec
 CVE-2009-2715 (Sun VirtualBox 2.2 through 3.0.2 r49928 allows guest OS users to cause ...)
-	TODO: check
+	- virtualbox-ose 3.0.4-dfsg-1 (medium)
 CVE-2009-2714 (Unspecified vulnerability in Sun VirtualBox 3.0.0 and 3.0.2 allows ...)
-	TODO: check
+	- virtualbox-ose 3.0.4-dfsg-1 (medium)
 CVE-2009-2713 (The CDCServlet component in Sun Java System Access Manager 7.0 2005Q4 ...)
 	NOT-FOR-US: Sun Java System Access Manager
 CVE-2009-2712 (Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and ...)
@@ -185,9 +185,9 @@
 CVE-2008-6905 (Cross-site request forgery (CSRF) vulnerability in index.php in ...)
 	NOT-FOR-US: BabbleBoard
 CVE-2009-2705 (CA SiteMinder allows remote attackers to bypass cross-site scripting ...)
-	TODO: check
+	NOT-FOR-US: SiteMinder
 CVE-2009-2704 (CA SiteMinder allows remote attackers to bypass cross-site scripting ...)
-	TODO: check
+	NOT-FOR-US: SiteMinder
 CVE-2009-2703
 	RESERVED
 CVE-2009-2702

More information about the Secure-testing-commits mailing list