[Secure-testing-commits] r11089 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Wed Jan 28 22:27:49 UTC 2009
Author: nion
Date: 2009-01-28 22:27:48 +0000 (Wed, 28 Jan 2009)
New Revision: 11089
Modified:
data/CVE/list
Log:
new gnumeric issue (CVE-2009-0318)
new nautilus-python issue (CVE-2009-0317)
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-01-28 21:57:47 UTC (rev 11088)
+++ data/CVE/list 2009-01-28 22:27:48 UTC (rev 11089)
@@ -1,7 +1,7 @@
CVE-2009-0318 (Untrusted search path vulnerability in the GObject Python interpreter ...)
- TODO: check
+ - gnumeric <unfixed> (low; bug #513418)
CVE-2009-0317 (Untrusted search path vulnerability in the Python language bindings ...)
- TODO: check
+ - nautilus-python <unfixed> (low; bug #513419)
CVE-2009-0316 (Untrusted search path vulnerability in the Python module in vim allows ...)
TODO: check
CVE-2009-0315 (Untrusted search path vulnerability in the Python module in xchat ...)
@@ -11,7 +11,7 @@
CVE-2009-0313 (winetricks before 20081223 allows local users to overwrite arbitrary ...)
TODO: check
CVE-2009-0311 (The Backbone service (ftbackbone.exe) in EMC AutoStart before 5.3 SP2 ...)
- TODO: check
+ NOT-FOR-US: EMC AutoStart
CVE-2009-0310
RESERVED
CVE-2009-0309
@@ -25,33 +25,33 @@
CVE-2009-0305
RESERVED
CVE-2009-0304 (The kernel in Sun Solaris 10 and 11 snv_101b allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Solaris
CVE-2009-0303 (Cross-site scripting (XSS) vulnerability in Web Help Desk before ...)
- TODO: check
+ NOT-FOR-US: Web Help Desk
CVE-2009-0302 (SQL injection vulnerability in the Downloads 8.0 module for PHP-Nuke, ...)
- TODO: check
+ NOT-FOR-US: PHP-Nuke
CVE-2009-0301 (Multiple insecure method vulnerabilities in the FlexCell.Grid ActiveX ...)
- TODO: check
+ NOT-FOR-US: FlexCell Grid Control
CVE-2009-0300
REJECTED
CVE-2009-0299 (SQL injection vulnerability in index.php in Groone GLinks 2.1 allows ...)
- TODO: check
+ NOT-FOR-US: Groone GLinks
CVE-2009-0298 (Heap-based buffer overflow in MW6 Technologies Barcode ActiveX control ...)
- TODO: check
+ NOT-FOR-US: MW6 Technologies Barcode
CVE-2009-0297 (SQL injection vulnerability in login_check.asp in ClickAuction allows ...)
- TODO: check
+ NOT-FOR-US: ClickAuction
CVE-2009-0296 (SQL injection vulnerability in shop_display_products.php in Script ...)
- TODO: check
+ NOT-FOR-US: Script Toko Online
CVE-2009-0295 (SQL injection vulnerability in index.php in Information Technology ...)
- TODO: check
+ NOT-FOR-US: ITLPoll
CVE-2009-0294 (Multiple PHP remote file inclusion vulnerabilities in WB News 2.0.1, ...)
- TODO: check
+ NOT-FOR-US: WB News
CVE-2009-0293 (SQL injection vulnerability in profile_view.php in Wazzum Dating ...)
- TODO: check
+ NOT-FOR-US: Wazzum Dating Software
CVE-2009-0292 (SQL injection vulnerability in show_cat2.php in SHOP-INET 4 allows ...)
- TODO: check
+ NOT-FOR-US: SHOP-INET
CVE-2009-0291 (Directory traversal vulnerability in fc.php in OpenX 2.6.3 allows ...)
- TODO: check
+ NOT-FOR-US: OpenX
CVE-2009-0290 (Directory traversal vulnerability in common.php in SIR GNUBoard ...)
TODO: check
CVE-2009-0289 (k23productions TFTPUtil GUI 1.2.0 and 1.3.0 allows remote attackers to ...)
More information about the Secure-testing-commits
mailing list