[Secure-testing-commits] r11359 - data/CVE

atomo64-guest at alioth.debian.org atomo64-guest at alioth.debian.org
Sun Mar 8 02:36:11 UTC 2009 

Author: atomo64-guest
Date: 2009-03-08 02:36:10 +0000 (Sun, 08 Mar 2009)
New Revision: 11359

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-03-08 02:14:32 UTC (rev 11358)
+++ data/CVE/list	2009-03-08 02:36:10 UTC (rev 11359)
@@ -3,7 +3,7 @@
 CVE-2009-0834 (The audit_syscall_entry function in the Linux kernel 2.6.28.7 and ...)
 	TODO: check
 CVE-2009-0833 (Heap-based buffer overflow in gen_msn.dll in the gen_msn plugin 0.31 ...)
-	TODO: check
+	NOT-FOR-US: Winamp
 CVE-2009-0832 (SQL injection vulnerability in items.php in the E-Cart module 1.3 for ...)
 	TODO: check
 CVE-2009-0831 (SQL injection vulnerability in members.php in the Members CV (job) ...)
@@ -13,11 +13,11 @@
 CVE-2009-0829 (Multiple SQL injection vulnerabilities in QuoteBook allow remote ...)
 	TODO: check
 CVE-2009-0828 (QuoteBook stores quotes.inc under the web root with insufficient ...)
-	TODO: check
+	NOT-FOR-US: QuoteBook
 CVE-2009-0827 (PollHelper stores poll.inc under the web root with insufficient access ...)
-	TODO: check
+	NOT-FOR-US: PollHelper
 CVE-2009-0826 (BlogHelper stores common_db.inc under the web root with insufficient ...)
-	TODO: check
+	NOT-FOR-US: BlogHelper
 CVE-2009-0825
 	RESERVED
 CVE-2009-0824
@@ -51,9 +51,9 @@
 CVE-2008-6404 (Cross-site scripting (XSS) vulnerability in add_calendars.php in ...)
 	TODO: check
 CVE-2008-6403 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: OpenRat
 CVE-2008-6402 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Sofi WebGui
 CVE-2008-6401 (SQL injection vulnerability in sayfa.php in JETIK-WEB allows remote ...)
 	TODO: check
 CVE-2008-6400 (Cross-site scripting (XSS) vulnerability in refbase before 0.9.5 ...)
@@ -95,7 +95,8 @@
 CVE-2009-0805 (Cross-site scripting (XSS) vulnerability in piCal 0.91h and earlier, a ...)
 	NOT-FOR-US: piCal
 CVE-2009-0804 (Ziproxy 2.6.0, when transparent interception mode is enabled, uses the ...)
-	TODO: check
+	- ziproxy <unfixed>
+	TODO: file bug
 CVE-2009-0803 (SmoothWall SmoothGuardian, as used in SmoothWall Firewall, ...)
 	NOT-FOR-US: SmoothWall
 CVE-2009-0802 (Qbik WinGate, when transparent interception mode is enabled, uses the ...)

More information about the Secure-testing-commits mailing list